Security Affairs

JULY 15, 2021

. “Through the course of collaboration with trusted third parties, SonicWall has been made aware of threat actors actively targeting Secure Mobile Access (SMA) 100 series and Secure Remote Access (SRA) products running unpatched and end-of-life (EOL) 8.x x firmware in an imminent ransomware campaign using stolen credentials.”

Firmware 119

Firmware Ransomware Passwords Mobile 119

Security Affairs

FEBRUARY 23, 2022

US and UK cybersecurity and law enforcement agencies published a joint security advisory about a new malware, dubbed Cyclops Blink, that has been linked to the Russian-backed Sandworm APT group. The malware leverages the firmware update process to achieve persistence.

Malware 114

Malware Firmware Architecture Firewall 114

Security Affairs

SEPTEMBER 19, 2022

“It is found that our wireless products, FLEXLAN FX3000/2000 series, have a firmware vulnerability. The CVE–2022–36158 flaw is a hidden system command web page that was discovered performing reverse engineering of the firmware used by the device. ” reads the advisory published by Contec.

Wireless 102

Wireless Firmware Passwords Engineering 102

Security Affairs

APRIL 12, 2022

Sandworm (aka BlackEnergy and TeleBots) has been active since 2000, it operates under the control of Unit 74455 of the Russian GRU’s Main Center for Special Technologies (GTsST). The malware leverages the firmware update process to achieve persistence. Cyclops Blink is sophisticated malware with a modular structure.

Malware 98

Malware Firmware Cybersecurity Hacking 98

Security Affairs

APRIL 6, 2022

.” In February, US and UK cybersecurity and law enforcement agencies published a joint security advisory about a new malware, dubbed Cyclops Blink, that has been linked to the Russian-backed Sandworm APT group. The malware leverages the firmware update process to achieve persistence. ” reads the DoJ.

Malware 98

Malware Government Firmware Firewall 98

Notice Bored

JANUARY 9, 2021

For a long time prior to the year 2000, a significant number of software programmers had taken the same shortcut we all did back in "the 90s". So, egged-on by information security pro's and IT auditors (me, for instance), management took the risk seriously and invested significant resources into solving "the Y2k issue".

Internet 52

Internet Internet Risk InfoSec 52

McAfee

AUGUST 24, 2021

From the 1960’s to 2000 infusion pumps were mostly electromechanical devices with some embedded electronics, but the turn of the century delivered “smarter” devices with better safety mechanisms and the possibility to program them, which slowly opened the door to information security challenges.

Computers and Electronics 145

Computers and Electronics Authentication Software Risk 145