Nerds On Site

WTH Security News August 31, 2020

Your weekly top 5 technical and security issues Nerds should pay attention to:

U.S. indicts Russian for attempted ransomware attack on Tesla factory. Instead of accepting a million dollar bribe for using employee access to assist in the attack, the employee reported it to the FBI.

Chinese-Made Smartphones Are Secretly Stealing Money From People Around The World. When the price of a smartphone is too good to be true…

Facebook Hits Back At Apple’s iOS 14 Privacy Update. Interesting fighting words, but it does expose everyone’s core business models quite clearly. You mean Facebook needs the ability to track me across apps it doesn’t own in order to make me more profitable to them?

Twitter accounts with expired email addresses can be easily hijacked. While this is kind of obvious, the same can happen for many other services that rely on “forgot password” automation to just prove you have access to the email on file. Don’t forget to renew your domains!

Phishing continues to be an effective way to steal people’s credentials. The usual protections (MFA, BrightWeb) go a long way to avoid becoming a victim.

Did you know?

The command line is the best way to add local users (read non-Microsoft accounts) with these two commands:

net user [user] [password] /add

e.g. net user david kdZrFV5104Og /add

If the user needs to be made an administrator:

net localgroup administrators [domain\\user] /add

Thanks to Ferando Rempel for this tip!

Leave a Comment

Your email address will not be published.

Scroll to Top