Infosec quotes - system

This why applications like a website for example should NOT run as a system account. Use least privilege instead.

“...

"SYSTEM" is God in Windows. It's more powerful even than Administrator

...”

https://twitter.com/vessonsecurity/status/989991215566290945?s=21

Infosec quotes - ilo ransomware

“...

Ransomware is coming for your servers via iLO/IPMI

...”

https://twitter.com/kyhwana/status/989620411242504192?s=21

Infosec quotes - 00000 password

Employees if you see silly stuff like a default password like this from a vendor, raise a red flag, escalate to your manager, etc. Don’t ignore it.

“...

If the entity that supplies your ... credit card terminal has you change the settings on the device with a default "000000" password, you've got bigger problems than an expensive PCI audit

...”

https://twitter.com/briankrebs/status/989621851885391877?s=21

Infosec quotes - extract

“...

3 lines of native powershell to extract stored credentials from Edge && IE

...”

https://twitter.com/hansesecure/status/989379541654212608?s=21

Infosec quotes - drupal

“...

Hackers Don't Give Site Owners Time to Patch, Start Exploiting New Drupal Flaw Within Hours

...”

https://twitter.com/campuscodi/status/989483985859432448?s=21

Infosec quotes - av would solve

“...

Malware trend observation: Attackers rely on knowing which industries and individuals are likely to not be following best practices, as many ‘newsworthy’ events in the past couple weeks were malware or techniques that even well maintained basic antivirus would stop.

...”

https://twitter.com/jepaynemsft/status/988895496381984770?s=21 

Infosec quotes - win 2012

“...

Did you know that Windows Server 2012 R2 is out of mainstream support on October 9, 2018? You should be deploying Windows Server 2016.

...”

https://twitter.com/sqlha/status/988823183766716419?s=21