#LDAP

Ex-Employee’s Admin Credentials Used in US Gov Agency Hack

by

February 16, 2024 at 10:03AM A threat actor gained access to a US government organization’s network using compromised credentials from a former employee’s administrative account, enabling reconnaissance and data theft. CISA advises organizations to review administrative accounts, implement MFA, and maintain robust security measures to prevent similar incidents. Key takeaways from the meeting notes are … Read more

U.S. State Government Network Breached via Former Employee’s Account

by

February 16, 2024 at 03:03AM The US CISA reported a state government network compromise due to a former employee’s admin account. The threat actor gained access via a virtual private network and obtained credentials from a separate breach. The incident highlighted the lack of multi-factor authentication and the need to secure privileged accounts. The attackers … Read more