Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Comments
City of Albany Hit in Ransomware Attack
Newest First  |  Oldest First  |  Threaded View
MelBrandle
50%
50%
MelBrandle,
User Rank: Moderator
4/19/2019 | 12:06:21 AM
Highly unexpected
It seems that attacks vary and we cannot truly anticipate from which channel that hackers would leak the virus into. One instance they are hitting the updates and on another instance, they are sending the virus directly onto machines. Attackers are getting more advanced these days so sometimes security lapses happen unknowingly out of the blue.
REISEN1955
50%
50%
REISEN1955,
User Rank: Ninja
4/5/2019 | 3:29:45 PM
Re: Cities are targets
Of course corect and since I am working with a malware forensics team, it seems obvious to us does it not?  You are dealing with civic mentality here, budgets and games.  Whomever controls IT in government holds real power and disruption of that power is frowned upon.   Admit that something is not done correctluy????  NEVER.   So goes civic IT departments.   And backups?  My forever mantra of shame. 
LironB107
50%
50%
LironB107,
User Rank: Apprentice
4/2/2019 | 3:44:28 PM
Cities are targets
Cities are vulnerable and therefore are a good target for attackers. Their characteristics such as their size, organizational structure and high level of communication with a wide variety of individuals, organizations and external entities make them a great opportunity for attackers, who look for easy targets with high value. 

The key problem is that most existing security solutions are reactive, adjusting their defenses based on past attacks. This is not effective considering that new attacks are emerging on a daily basis. A different approach must be taken.
REISEN1955
50%
50%
REISEN1955,
User Rank: Ninja
4/2/2019 | 8:14:52 AM
on NY State
I moved to Georgia in 2014 where we have some but real corruption in government.  Now NY State is different.  Albany is a cesspool of junk and vice and graft.  It's BAD, real bad and the governor is a sham, a king without clothes so expetcting honest admission here is an impossibility.  Not going to happen.  EVER.  


Edge-DRsplash-10-edge-articles
7 Old IT Things Every New InfoSec Pro Should Know
Joan Goodchild, Staff Editor,  4/20/2021
News
Cloud-Native Businesses Struggle With Security
Robert Lemos, Contributing Writer,  5/6/2021
Commentary
Defending Against Web Scraping Attacks
Rob Simon, Principal Security Consultant at TrustedSec,  5/7/2021
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
2021 Top Enterprise IT Trends
We've identified the key trends that are poised to impact the IT landscape in 2021. Find out why they're important and how they will affect you today!
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2021-22152
PUBLISHED: 2021-05-13
A Denial of Service due to Improper Input Validation vulnerability in the Management Console component of BlackBerry UEM version(s) 12.13.1 QF2 and earlier and 12.12.1a QF6 and earlier could allow an attacker to potentially to prevent any new user connections.
CVE-2021-22153
PUBLISHED: 2021-05-13
A Remote Code Execution vulnerability in the Management Console component of BlackBerry UEM version(s) 12.13.1 QF2 and earlier and 12.12.1a QF6 and earlier could allow an attacker to potentially cause the spreadsheet application to run commands on the victim’s local machine with t...
CVE-2021-22154
PUBLISHED: 2021-05-13
An Information Disclosure vulnerability in the Management Console component of BlackBerry UEM version(s) 12.13.1 QF2 and earlier and 12.12.1a QF6 and earlier could allow an attacker to potentially gain access to a victim's web history.
CVE-2021-20331
PUBLISHED: 2021-05-13
Specific versions of the MongoDB C# Driver may erroneously publish events containing authentication-related data to a command listener configured by an application. The published events may contain security-sensitive data when commands such as "saslStart", "saslContinue", "i...
CVE-2021-31215
PUBLISHED: 2021-05-13
SchedMD Slurm before 20.02.7 and 20.03.x through 20.11.x before 20.11.7 allows remote code execution as SlurmUser because use of a PrologSlurmctld or EpilogSlurmctld script leads to environment mishandling.