Admin/Admin and Other Signs You’re Headed for an “Equifiasco”

10/26/2017 11:00:00 AM [(UTC-05:00) Eastern Time (US & Canada)] - Can't make the live event? Register anyway to receive a link to the recording.

Other Time Zones

GMT Standard Time-(UTC+00:00) Dublin, Edinburgh, Lisbon, London    10/26/2017 4:00:00 PM
Show/Hide All Time Zones

All Time Zones

Dateline Standard Time-(UTC-12:00) International Date Line West 10/26/2017 3:00:00 AM
UTC-11-(UTC-11:00) Coordinated Universal Time-11 10/26/2017 4:00:00 AM
Aleutian Standard Time-(UTC-10:00) Aleutian Islands 10/26/2017 6:00:00 AM
Hawaiian Standard Time-(UTC-10:00) Hawaii 10/26/2017 5:00:00 AM
Marquesas Standard Time-(UTC-09:30) Marquesas Islands 10/26/2017 5:30:00 AM
Alaskan Standard Time-(UTC-09:00) Alaska 10/26/2017 7:00:00 AM
UTC-09-(UTC-09:00) Coordinated Universal Time-09 10/26/2017 6:00:00 AM
Pacific Standard Time (Mexico)-(UTC-08:00) Baja California 10/26/2017 8:00:00 AM
UTC-08-(UTC-08:00) Coordinated Universal Time-08 10/26/2017 7:00:00 AM
Pacific Standard Time-(UTC-08:00) Pacific Time (US & Canada) 10/26/2017 8:00:00 AM
US Mountain Standard Time-(UTC-07:00) Arizona 10/26/2017 8:00:00 AM
Mountain Standard Time (Mexico)-(UTC-07:00) Chihuahua, La Paz, Mazatlan 10/26/2017 9:00:00 AM
Mountain Standard Time-(UTC-07:00) Mountain Time (US & Canada) 10/26/2017 9:00:00 AM
Central America Standard Time-(UTC-06:00) Central America 10/26/2017 9:00:00 AM
Central Standard Time-(UTC-06:00) Central Time (US & Canada) 10/26/2017 10:00:00 AM
Easter Island Standard Time-(UTC-06:00) Easter Island 10/26/2017 10:00:00 AM
Central Standard Time (Mexico)-(UTC-06:00) Guadalajara, Mexico City, Monterrey 10/26/2017 10:00:00 AM
Canada Central Standard Time-(UTC-06:00) Saskatchewan 10/26/2017 9:00:00 AM
SA Pacific Standard Time-(UTC-05:00) Bogota, Lima, Quito, Rio Branco 10/26/2017 10:00:00 AM
Eastern Standard Time (Mexico)-(UTC-05:00) Chetumal 10/26/2017 10:00:00 AM
Eastern Standard Time-(UTC-05:00) Eastern Time (US & Canada) 10/26/2017 11:00:00 AM
Haiti Standard Time-(UTC-05:00) Haiti 10/26/2017 11:00:00 AM
Cuba Standard Time-(UTC-05:00) Havana 10/26/2017 11:00:00 AM
US Eastern Standard Time-(UTC-05:00) Indiana (East) 10/26/2017 11:00:00 AM
Paraguay Standard Time-(UTC-04:00) Asuncion 10/26/2017 12:00:00 PM
Atlantic Standard Time-(UTC-04:00) Atlantic Time (Canada) 10/26/2017 12:00:00 PM
Venezuela Standard Time-(UTC-04:00) Caracas 10/26/2017 11:00:00 AM
Central Brazilian Standard Time-(UTC-04:00) Cuiaba 10/26/2017 12:00:00 PM
SA Western Standard Time-(UTC-04:00) Georgetown, La Paz, Manaus, San Juan 10/26/2017 11:00:00 AM
Pacific SA Standard Time-(UTC-04:00) Santiago 10/26/2017 12:00:00 PM
Turks And Caicos Standard Time-(UTC-04:00) Turks and Caicos 10/26/2017 11:00:00 AM
Newfoundland Standard Time-(UTC-03:30) Newfoundland 10/26/2017 12:30:00 PM
Tocantins Standard Time-(UTC-03:00) Araguaina 10/26/2017 12:00:00 PM
E. South America Standard Time-(UTC-03:00) Brasilia 10/26/2017 1:00:00 PM
SA Eastern Standard Time-(UTC-03:00) Cayenne, Fortaleza 10/26/2017 12:00:00 PM
Argentina Standard Time-(UTC-03:00) City of Buenos Aires 10/26/2017 12:00:00 PM
Greenland Standard Time-(UTC-03:00) Greenland 10/26/2017 1:00:00 PM
Montevideo Standard Time-(UTC-03:00) Montevideo 10/26/2017 12:00:00 PM
Magallanes Standard Time-(UTC-03:00) Punta Arenas 10/26/2017 12:00:00 PM
Saint Pierre Standard Time-(UTC-03:00) Saint Pierre and Miquelon 10/26/2017 1:00:00 PM
Bahia Standard Time-(UTC-03:00) Salvador 10/26/2017 12:00:00 PM
UTC-02-(UTC-02:00) Coordinated Universal Time-02 10/26/2017 1:00:00 PM
Mid-Atlantic Standard Time-(UTC-02:00) Mid-Atlantic - Old 10/26/2017 1:00:00 PM
Azores Standard Time-(UTC-01:00) Azores 10/26/2017 3:00:00 PM
Cape Verde Standard Time-(UTC-01:00) Cabo Verde Is. 10/26/2017 2:00:00 PM
UTC-(UTC) Coordinated Universal Time 10/26/2017 3:00:00 PM
Morocco Standard Time-(UTC+00:00) Casablanca 10/26/2017 4:00:00 PM
GMT Standard Time-(UTC+00:00) Dublin, Edinburgh, Lisbon, London 10/26/2017 4:00:00 PM
Greenwich Standard Time-(UTC+00:00) Monrovia, Reykjavik 10/26/2017 3:00:00 PM
W. Europe Standard Time-(UTC+01:00) Amsterdam, Berlin, Bern, Rome, Stockholm, Vienna 10/26/2017 5:00:00 PM
Central Europe Standard Time-(UTC+01:00) Belgrade, Bratislava, Budapest, Ljubljana, Prague 10/26/2017 5:00:00 PM
Romance Standard Time-(UTC+01:00) Brussels, Copenhagen, Madrid, Paris 10/26/2017 5:00:00 PM
Central European Standard Time-(UTC+01:00) Sarajevo, Skopje, Warsaw, Zagreb 10/26/2017 5:00:00 PM
W. Central Africa Standard Time-(UTC+01:00) West Central Africa 10/26/2017 4:00:00 PM
Namibia Standard Time-(UTC+01:00) Windhoek 10/26/2017 5:00:00 PM
Jordan Standard Time-(UTC+02:00) Amman 10/26/2017 6:00:00 PM
GTB Standard Time-(UTC+02:00) Athens, Bucharest 10/26/2017 6:00:00 PM
Middle East Standard Time-(UTC+02:00) Beirut 10/26/2017 6:00:00 PM
Egypt Standard Time-(UTC+02:00) Cairo 10/26/2017 5:00:00 PM
E. Europe Standard Time-(UTC+02:00) Chisinau 10/26/2017 6:00:00 PM
Syria Standard Time-(UTC+02:00) Damascus 10/26/2017 6:00:00 PM
West Bank Standard Time-(UTC+02:00) Gaza, Hebron 10/26/2017 6:00:00 PM
South Africa Standard Time-(UTC+02:00) Harare, Pretoria 10/26/2017 5:00:00 PM
FLE Standard Time-(UTC+02:00) Helsinki, Kyiv, Riga, Sofia, Tallinn, Vilnius 10/26/2017 6:00:00 PM
Israel Standard Time-(UTC+02:00) Jerusalem 10/26/2017 6:00:00 PM
Kaliningrad Standard Time-(UTC+02:00) Kaliningrad 10/26/2017 5:00:00 PM
Libya Standard Time-(UTC+02:00) Tripoli 10/26/2017 5:00:00 PM
Arabic Standard Time-(UTC+03:00) Baghdad 10/26/2017 6:00:00 PM
Turkey Standard Time-(UTC+03:00) Istanbul 10/26/2017 6:00:00 PM
Arab Standard Time-(UTC+03:00) Kuwait, Riyadh 10/26/2017 6:00:00 PM
Belarus Standard Time-(UTC+03:00) Minsk 10/26/2017 6:00:00 PM
Russian Standard Time-(UTC+03:00) Moscow, St. Petersburg, Volgograd 10/26/2017 6:00:00 PM
E. Africa Standard Time-(UTC+03:00) Nairobi 10/26/2017 6:00:00 PM
Iran Standard Time-(UTC+03:30) Tehran 10/26/2017 6:30:00 PM
Arabian Standard Time-(UTC+04:00) Abu Dhabi, Muscat 10/26/2017 7:00:00 PM
Astrakhan Standard Time-(UTC+04:00) Astrakhan, Ulyanovsk 10/26/2017 7:00:00 PM
Azerbaijan Standard Time-(UTC+04:00) Baku 10/26/2017 7:00:00 PM
Russia Time Zone 3-(UTC+04:00) Izhevsk, Samara 10/26/2017 7:00:00 PM
Mauritius Standard Time-(UTC+04:00) Port Louis 10/26/2017 7:00:00 PM
Saratov Standard Time-(UTC+04:00) Saratov 10/26/2017 7:00:00 PM
Georgian Standard Time-(UTC+04:00) Tbilisi 10/26/2017 7:00:00 PM
Caucasus Standard Time-(UTC+04:00) Yerevan 10/26/2017 7:00:00 PM
Afghanistan Standard Time-(UTC+04:30) Kabul 10/26/2017 7:30:00 PM
West Asia Standard Time-(UTC+05:00) Ashgabat, Tashkent 10/26/2017 8:00:00 PM
Ekaterinburg Standard Time-(UTC+05:00) Ekaterinburg 10/26/2017 8:00:00 PM
Pakistan Standard Time-(UTC+05:00) Islamabad, Karachi 10/26/2017 8:00:00 PM
India Standard Time-(UTC+05:30) Chennai, Kolkata, Mumbai, New Delhi 10/26/2017 8:30:00 PM
Sri Lanka Standard Time-(UTC+05:30) Sri Jayawardenepura 10/26/2017 8:30:00 PM
Nepal Standard Time-(UTC+05:45) Kathmandu 10/26/2017 8:45:00 PM
Central Asia Standard Time-(UTC+06:00) Astana 10/26/2017 9:00:00 PM
Bangladesh Standard Time-(UTC+06:00) Dhaka 10/26/2017 9:00:00 PM
Omsk Standard Time-(UTC+06:00) Omsk 10/26/2017 9:00:00 PM
Myanmar Standard Time-(UTC+06:30) Yangon (Rangoon) 10/26/2017 9:30:00 PM
SE Asia Standard Time-(UTC+07:00) Bangkok, Hanoi, Jakarta 10/26/2017 10:00:00 PM
Altai Standard Time-(UTC+07:00) Barnaul, Gorno-Altaysk 10/26/2017 10:00:00 PM
W. Mongolia Standard Time-(UTC+07:00) Hovd 10/26/2017 10:00:00 PM
North Asia Standard Time-(UTC+07:00) Krasnoyarsk 10/26/2017 10:00:00 PM
N. Central Asia Standard Time-(UTC+07:00) Novosibirsk 10/26/2017 10:00:00 PM
Tomsk Standard Time-(UTC+07:00) Tomsk 10/26/2017 10:00:00 PM
China Standard Time-(UTC+08:00) Beijing, Chongqing, Hong Kong, Urumqi 10/26/2017 11:00:00 PM
North Asia East Standard Time-(UTC+08:00) Irkutsk 10/26/2017 11:00:00 PM
Singapore Standard Time-(UTC+08:00) Kuala Lumpur, Singapore 10/26/2017 11:00:00 PM
W. Australia Standard Time-(UTC+08:00) Perth 10/26/2017 11:00:00 PM
Taipei Standard Time-(UTC+08:00) Taipei 10/26/2017 11:00:00 PM
Ulaanbaatar Standard Time-(UTC+08:00) Ulaanbaatar 10/26/2017 11:00:00 PM
North Korea Standard Time-(UTC+08:30) Pyongyang 10/26/2017 11:30:00 PM
Aus Central W. Standard Time-(UTC+08:45) Eucla 10/26/2017 11:45:00 PM
Transbaikal Standard Time-(UTC+09:00) Chita 10/27/2017 12:00:00 AM
Tokyo Standard Time-(UTC+09:00) Osaka, Sapporo, Tokyo 10/27/2017 12:00:00 AM
Korea Standard Time-(UTC+09:00) Seoul 10/27/2017 12:00:00 AM
Yakutsk Standard Time-(UTC+09:00) Yakutsk 10/27/2017 12:00:00 AM
Cen. Australia Standard Time-(UTC+09:30) Adelaide 10/27/2017 1:30:00 AM
AUS Central Standard Time-(UTC+09:30) Darwin 10/27/2017 12:30:00 AM
E. Australia Standard Time-(UTC+10:00) Brisbane 10/27/2017 1:00:00 AM
AUS Eastern Standard Time-(UTC+10:00) Canberra, Melbourne, Sydney 10/27/2017 2:00:00 AM
West Pacific Standard Time-(UTC+10:00) Guam, Port Moresby 10/27/2017 1:00:00 AM
Tasmania Standard Time-(UTC+10:00) Hobart 10/27/2017 2:00:00 AM
Vladivostok Standard Time-(UTC+10:00) Vladivostok 10/27/2017 1:00:00 AM
Lord Howe Standard Time-(UTC+10:30) Lord Howe Island 10/27/2017 2:00:00 AM
Bougainville Standard Time-(UTC+11:00) Bougainville Island 10/27/2017 2:00:00 AM
Russia Time Zone 10-(UTC+11:00) Chokurdakh 10/27/2017 2:00:00 AM
Magadan Standard Time-(UTC+11:00) Magadan 10/27/2017 2:00:00 AM
Norfolk Standard Time-(UTC+11:00) Norfolk Island 10/27/2017 2:00:00 AM
Sakhalin Standard Time-(UTC+11:00) Sakhalin 10/27/2017 2:00:00 AM
Central Pacific Standard Time-(UTC+11:00) Solomon Is., New Caledonia 10/27/2017 2:00:00 AM
Russia Time Zone 11-(UTC+12:00) Anadyr, Petropavlovsk-Kamchatsky 10/27/2017 3:00:00 AM
New Zealand Standard Time-(UTC+12:00) Auckland, Wellington 10/27/2017 4:00:00 AM
UTC+12-(UTC+12:00) Coordinated Universal Time+12 10/27/2017 3:00:00 AM
Fiji Standard Time-(UTC+12:00) Fiji 10/27/2017 3:00:00 AM
Kamchatka Standard Time-(UTC+12:00) Petropavlovsk-Kamchatsky - Old 10/27/2017 4:00:00 AM
Chatham Islands Standard Time-(UTC+12:45) Chatham Islands 10/27/2017 4:45:00 AM
UTC+13-(UTC+13:00) Coordinated Universal Time+13 10/27/2017 4:00:00 AM
Tonga Standard Time-(UTC+13:00) Nuku'alofa 10/27/2017 4:00:00 AM
Samoa Standard Time-(UTC+13:00) Samoa 10/27/2017 5:00:00 AM
Line Islands Standard Time-(UTC+14:00) Kiritimati Island 10/27/2017 5:00:00 AM

Webinar Registration

The Equifax breach occurred just over a month ago yet the fallout in terms of what new regulations and fines will result from the largest PII breach to date will likely be months if not a year down the road. But that doesn’t mean your organizations has to wait, here are some dependable indicators your organization could be headed for an Equifiasco. Queue up the Key Stone Cops music.

  1. When hacked you wait 6 weeks before going public
  2. After going public, you set up a completely new domain to communicate with your customers that sounds exactly like a phishing domain or at least one that celebrates your epic fail as though it’s the first in a yearly series.
  3. Your communications team intern apparently can’t remember the domain of said site exactly so he goes where any millennial turns to answer questions and Google graciously provides a similarly worded phishing domain, which he then proceeds to point to said phishing site from the company’s main website and twitter feed sending more than 200,000 hits to the phishing site.
  4. The website you set up on this questionable domain returns seemingly random answers of “yes you were/no you weren’t” breached to real and imaginary identity information.
  5. Systems are secured with the imaginative user name/password combination of admin/admin because “No sophisticated attacker would ever try that.”
  6. Someone implements a brilliant scheme for helping users remember their password: make it the same as their user name.
  7. Someone implements a brilliant scheme for helping users remember their user name: make it their last name.
  8. Your HR department goes to University of Georgia’s Music program to recruit senior executive information security talent.

And while we’re at it, you know here at UWS we really like indicators of compromise. IOCs are normally very arcane and technical but here’s a great compound indicator that a breach may already be in progress:  Executives start selling their stock and your CSO’s LinkedIn profile and every other reference to them on the Internet including YouTube videos, interviews, etc. suddenly disappear.

Well, that, along with some artistic license, was fun (and mostly deserved) but it’s the other mistakes Equifax made that allowed this to happen in the first place and those mistakes are sadly all too common.

First of all, patching. Although this is being challenged by some researchers, it’s being reported that the hack is being blamed on an unpatched vulnerability. If that’s true the sequence would be something like this: A vulnerability was discovered. A patch was released. Equifax made an effort to install the patch. They missed at least one system. If we’re honest that’s pretty believable. There are lots of systems and lots of patches.  But hopefully closed loop patch management and vulnerability scanning would find patch failures. And those compensating controls aren’t instantaneous either.

All it takes is one. Well, all it takes is one unpatched system to give an attacker an opening but it should take more than that for them to steal your crown jewels. 

In a Wired article Alex McGeorge points out that “Security best practices dictate that“ the web server account ”have as little privilege as possible on the server itself, since security vulnerabilities in web applications and web servers are so commonly exploited”. But the article says “hackers could have found credentials or other information in plaintext right away if Equifax didn't have proper protections in place.”

It’s reasonable to suppose that Equifax wasn’t following this and other best practices because of the admin/admin combo discovered on one system and so many other indicators coming out.

Even if you are a company where you and management understand today’s risks and are committed to securely managing privileged accounts it’s still not easy.

In this webinar, we’ll look at what we know about the Equifax incident – more information is coming out all the time – and discuss how you can slow down attackers, harassing them every step of the way so that one missing patch on one Internet facing system doesn’t expose your most internal secrets.

It takes more than patching. It takes network segmentation. It takes monitoring. And it takes privileged account management. If you are trying to manually locate every privileged account and keep it secure the odds are stacked against you. 

Please join me for this real training for free event.

First Name:   
Last Name:   
Work Email:  
Phone:  
Job Title:  
Organization:  
Country:    
Address:  
City:  
State:  
Zip/Postal Code:  
Organization Type :
 

Your information will be shared with the sponsor.


 

 

Additional Resources