Submission + - Lazy hackers don't bother phishing, just log in and run ransomware themselves (sophos.com) 1

Submitted by Anonymous Coward on Wednesday November 15, 2017 @12:44PM

An anonymous reader writes: An investigation by Sophos has uncovered a new, lazy but effective ransomware attack where hackers brute force passwords on computers with RDP enabled, use off-the-shelf privilege escalation exploits to make themselves admins, turn off security software and then manually run fusty old versions of ransomware.

This discussion was created for logged-in users only, but now has been archived. No new comments can be posted.

Lazy hackers don't bother phishing, just log in and run ransomware themselves

Load All Comments

Search 1 Comments Log In/Create an Account

Comments Filter:

Might be a stretch to call it new... (Score:2)

by thegreatbob ( 693104 ) writes:

... but it's still a big problem. I've witnessed similar things being done (or having just recently been done) to a number of Linux boxes; one might be surprised by the havoc one can wreak with a non-privileged (but not jailed or sandboxed) account on many internet-connected systems. Also, ensure that anything that must face the internet with RDP open has NLA turned on. Use port knocking, perhaps, if you're stuck with a firewall that doesn't allow the creation of IP-based rules. Anything. At. All. VPNs of a

There may be more comments in this discussion. Without JavaScript enabled, you might want to turn on Classic Discussion System in your preferences instead.

We are each entitled to our own opinion, but no one is entitled to his own facts. -- Patrick Moynihan

Submission + - Lazy hackers don't bother phishing, just log in and run ransomware themselves (sophos.com) 1

Lazy hackers don't bother phishing, just log in and run ransomware themselves More Login

Lazy hackers don't bother phishing, just log in and run ransomware themselves

Might be a stretch to call it new... (Score:2)

Slashdot Top Deals

Slashdot