2012, Firmware and Internet - Cyber Security Informer

MyBook Users Urged to Unplug Devices from Internet

Krebs on Security

JUNE 25, 2021

Hard drive giant Western Digital is urging users of its MyBook Live brand of network storage drives to disconnect them from the Internet, warning that malicious hackers are remotely wiping the drives using a critical flaw that can be triggered by anyone who knows the Internet address of an affected device.

Internet

Internet Internet Backups Small Business

China-linked APT Mustang Panda targets TP-Link routers with a custom firmware implant

Security Affairs

MAY 16, 2023

China-linked APT group Mustang Panda employed a custom firmware implant targeting TP-Link routers in targeted attacks since January 2023. MustangPanda has been active since at least 2012, it targeted American and European entities such as government organizations, think tanks, NGOs , and even Catholic organizations at the Vatican.

Firmware

Firmware Encryption Government Malware

A critical flaw in industrial automation systems opens to remote hack

Security Affairs

NOVEMBER 29, 2020

out of 10 in severity by the industry-standard Common Vulnerability Scoring System (CVSS) and impacts all versions of EtherNet/IP Adapter Source Code Stack prior to 2.28, which was released on November 21, 2012. Tracked as CVE-2020-25159 , the flaw is rated 9.8 This would leave many running in the wild still today.”

Hacking

Hacking Firmware Internet Internet

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

QNAP customers urged to disable AFP to protect against severe vulnerabilities

Malwarebytes

APRIL 28, 2022

In real life this usually means they are used as an external hard-drive that can be accessed over an intranet or the Internet. of Netatalk was released in July 2012. Western Digital removed Netatalk from its firmware, released on January 10, 2022. Version 3.0 with a new feature and several security updates. Not just QNAP.

Firmware

Firmware Backups Internet Internet

Both Mirai and Hoaxcalls IoT botnets target Symantec Web Gateways

Security Affairs

MAY 19, 2020

“There is no evidence to support any other firmware versions are vulnerable at this point in time and these findings have been shared with Symantec.” Experts note that the exploit is only effective for authenticated sessions and the affected devices are End of Life (EOL) from 2012. ” concludes Palo Alto Networks.

IoT

IoT DDOS Authentication Advertising

Advanced threat predictions for 2023

SecureList

NOVEMBER 14, 2022

In both cases, we described new UEFI firmware bootkits that managed to propagate malicious components from the deepest layers of the machine up to Windows’ user-land. The reason is simple: they represent huge software stacks that must support many protocols and have to be internet-facing to operate properly.

Firmware

Firmware Surveillance Mobile Telecommunications

WizCase Report: Vulnerabilities found in WD My Book, NetGear Stora, SeaGate Home, Medion LifeCloud NAS

Security Affairs

OCTOBER 20, 2018

CVE-2018-18472 – XXE and Unauthenticated Remote Command Execution in Axentra Hipserv NAS firmware. . It’s used in different devices from different vendors, the affected devices sharing the firmware are: Netgear Stora. The company provides a firmware with a web interface that mainly uses PHP as a serverside language.

Firmware

Firmware IoT VPN Authentication

StripedFly: Perennially flying under the radar

SecureList

OCTOBER 25, 2023

This archive is discreetly hosted on legitimate websites, cleverly disguised as firmware binaries for enigmatic devices labeled “m100” The Bitbucket repository was created on June 21, 2018, under the account of Julie Heilman, and it remains the sole repository associated with this profile. 8, 10.0.0.0/8, 8, 100.64.0.0/10,

Malware

Malware DNS Encryption Cryptocurrency

Mobile malware evolution 2020

SecureList

MARCH 1, 2021

The manufacturer of the mobile device preloads an adware application or a component with the firmware. It could only make its way there via another Trojan that exploited system privileges or as part of the firmware. This is a typical example of the kind of old-school text-message scams that were popular in 2011 and 2012.

Mobile

Mobile Malware Adware Banking

The Hacker Mind Podcast: The Right To Repair

ForAllSecure

FEBRUARY 10, 2021

” So should analyzing a device’s firmware for security flaws be considered illegal? And in some sense with the internet, it would be impossible as well because people in Massachusetts would just share the information, you know, via the Internet, and it would be available anyway.

InfoSec

InfoSec Manufacturing Technology Software

The Hacker Mind Podcast: The Right To Repair

ForAllSecure

FEBRUARY 10, 2021

” So should analyzing a device’s firmware for security flaws be considered illegal? And in some sense with the internet, it would be impossible as well because people in Massachusetts would just share the information, you know, via the Internet, and it would be available anyway.

InfoSec

InfoSec Manufacturing Technology Software

Cyber Security Informer

MyBook Users Urged to Unplug Devices from Internet

China-linked APT Mustang Panda targets TP-Link routers with a custom firmware implant

Webinars

Trending Sources

A critical flaw in industrial automation systems opens to remote hack

Webinars

QNAP customers urged to disable AFP to protect against severe vulnerabilities

Both Mirai and Hoaxcalls IoT botnets target Symantec Web Gateways

Advanced threat predictions for 2023

WizCase Report: Vulnerabilities found in WD My Book, NetGear Stora, SeaGate Home, Medion LifeCloud NAS

StripedFly: Perennially flying under the radar

Mobile malware evolution 2020

The Hacker Mind Podcast: The Right To Repair

The Hacker Mind Podcast: The Right To Repair

Stay Connected