HomeSecurity ArchitectureNew FBI Warning: Disable Local Admin Accounts as Attacks Persist

New FBI Warning: Disable Local Admin Accounts as Attacks Persist

Published on

spot_img

In a recent public service announcement, the Federal Bureau of Investigation (FBI) issued a warning urging businesses to disable local admin accounts in order to prevent potential cyber attacks and data breaches. The FBI highlighted the importance of taking precautionary measures to protect sensitive company data from malicious actors, particularly those with ties to North Korea.

The FBI emphasized the growing threat of extortion and theft of sensitive company data by remotely-based IT workers from the Democratic People’s Republic of Korea. These individuals have been known to unlawfully access systems in order to steal proprietary and sensitive information, as well as facilitate other cyber-crime activities. The FBI’s investigations have revealed alarming trends, including the ransom of proprietary data and code, the unauthorized copying of corporate code repositories to attacker user profiles and personal cloud accounts, and the attempted harvesting of company credentials and session cookies for further compromise opportunities.

To mitigate the risks associated with these cyber threats, the FBI recommended disabling local administrator accounts, limiting privileges for installing remote desktop applications, and monitoring for any unusual network traffic. The FBI noted that North Korean IT workers frequently utilize multiple logins into one account from various IP addresses associated with different countries, highlighting the need for increased vigilance and security measures.

In addition to technical safeguards, the FBI advised implementing strict identity-verification processes during the interviewing and onboarding stages of hiring IT workers, as well as throughout the employment lifecycle. The FBI also warned businesses to cross-check HR systems for other applicants with similar resume content or contact information, as North Korean IT workers have been known to use artificial intelligence and face-swapping technology to conceal their identities during video job interviews.

Overall, the FBI’s warning serves as a stark reminder of the evolving nature of cyber threats and the critical importance of taking proactive steps to safeguard sensitive company data. By heeding the FBI’s advice and implementing robust security measures, businesses can better protect themselves against potential cyber attacks and minimize the risk of data breaches.

Source link

Latest articles

Chaya_006 Alert: OT Edge Devices Vulnerable to Threats

The Chaya_006 Edge Campaign: Threats Emerge in Operational Technology Forescout Technologies’ Vedere Labs has recently...

Anthropic’s Fable 5 and Mythos 5 Return with Enhanced Security Guardrails

Anthropic Revives Claude Mythos 5 and Claude Fable 5 with Enhanced Security Measures Anthropic has...

Live Webinar: Smarter Cyber Defense for Government and Higher Education

Dr. Tina Carkhuff: A Leader in Data-Driven Public Service Industry Advisor,...

RedLine Infostealer Thread Uncovers Covert Maritime Phishing and BEC Infrastructure

Investigation Reveals Targeted Spear-Phishing and BEC Campaign in Maritime Sector A routine alert from a...

More like this

Chaya_006 Alert: OT Edge Devices Vulnerable to Threats

The Chaya_006 Edge Campaign: Threats Emerge in Operational Technology Forescout Technologies’ Vedere Labs has recently...

Anthropic’s Fable 5 and Mythos 5 Return with Enhanced Security Guardrails

Anthropic Revives Claude Mythos 5 and Claude Fable 5 with Enhanced Security Measures Anthropic has...

Live Webinar: Smarter Cyber Defense for Government and Higher Education

Dr. Tina Carkhuff: A Leader in Data-Driven Public Service Industry Advisor,...