2010 Firmware Hacking VPN 
Security Affairs
OCTOBER 20, 2018
CVE-2018-18472 – XXE and Unauthenticated Remote Command Execution in Axentra Hipserv NAS firmware. . It’s used in different devices from different vendors, the affected devices sharing the firmware are: Netgear Stora. The company provides a firmware with a web interface that mainly uses PHP as a serverside language.
eSecurity Planet
MARCH 4, 2024
All sites incorporated the archaic FCKeditor plug-in, which stopped receiving support in 2010. The fix: To eliminate malware infections, perform a factory reset, upgrade to the latest firmware, change all default usernames and passwords, and adjust firewall rules to block exposure to unwanted remote management services.
SecureList
OCTOBER 26, 2021
Upon further investigation we also discovered additional implants deployed through both ShadowPad and ShadowShredder, such as Quarian backdoor, PlugX, Poison Ivy and other hack tools. The samples we analyzed mimicked various applications such as private messaging, VPN, and media services.
Expert insights. Personalized for you.
60 
Let's personalize your content