2013 and Firmware - Cyber Security Informer

CosmicStrand malware targets old Asus and Gigabyte motherboards

CyberSecurity Insiders

JULY 27, 2022

A novel malware named CosmicStrand is said to be targeting the old motherboards offered by Asus and Gigabyte and the crux is that it can survive operating system re-installs and it survives in Unified Extensible Firmware Interface (UEFIs) unlike just the storage drive.

Malware

Malware Firmware Antivirus Marketing

BotenaGo botnet targets millions of IoT devices using 33 exploits

Security Affairs

NOVEMBER 11, 2021

Ax with firmware 1.04b12 and earlier CVE-2016-1555 Netgear WN604 before 3.3.3 CVE-2017-6077 NETGEAR DGN2200 devices with firmware through 10.0.0.50 Beta, D6220, D6400, D7000 CVE-2018-10561, CVE-2018-10562 GPON home routers CVE-2013-3307 Linksys X3000 1.0.03 CVE-2017-6077 NETGEAR DGN2200 devices with firmware through 10.0.0.50

IoT

IoT Firmware Malware Wireless

SonicWall warns of ‘imminent ransomware’ attacks on its EOL products

Security Affairs

JULY 15, 2021

x firmware in an imminent ransomware campaign using stolen credentials.” “The exploitation targets a known vulnerability that has been patched in newer versions of firmware.” The network equipment vendor is now urging customers to update the firmware of their devices as soon as possible. “If 34 or 9.0.0.10

Firmware

Firmware Ransomware Passwords Mobile

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

New HP MFP vulnerabilities show why you should update and isolate printers

CSO Magazine

NOVEMBER 30, 2021

Security researchers have published details about two serious vulnerabilities that impact over 150 different HP multifunction printer models with FutureSmart firmware going back at least nine years.

Firmware

Firmware Risk

Ultimate Pentesting PwnBox (2013) - Utilite Pro

Kali Linux

DECEMBER 7, 2013

Nov 25 2013) >> Checking for utilities. >> tools (Oct 06 2013 - 13:46:27) >> New U-Boot version in file: (248K) >> Proceed with the update? Cloning into 'firmware'. /cm-fx6-bootloader-update.sh CompuLab CM-FX6 (Utilite) boot loader update utility 1.1 (Nov utilite.sh remote: Counting objects: 874, done.

Wireless

Wireless Firmware Architecture

SonicWall warns users of “imminent ransomware campaign”

Malwarebytes

JULY 15, 2021

The exploitation targets a known vulnerability that has been patched in newer versions of SonicWall firmware. x versions of the firmware. x firmware. x firmware versions. SSL-VPN 200/2000/400 (EOL 2013/2014) disconnect immediately and reset passwords. SMA 210/410/500v (Actively Supported) update firmware to 9.0.0.10-28sv

Ransomware

Ransomware Firmware VPN Firewall

ZoomEye IoT search engine cached login passwords for tens of thousands of Dahua DVRs

Security Affairs

JULY 16, 2018

Anubhav explained that the passwords are related to Dahua DVRs running very old firmware that is known to be affected by a five-year-old vulnerability tracked as CVE-2013-6117. Even if the vulnerability has been patched, many Dahua devices are still running ancient firmware.

IoT

IoT Engineering Passwords Firmware

Experts found undocumented access feature in Siemens SIMATIC PLCs

Security Affairs

NOVEMBER 17, 2019

The researchers focused their analysis on the firmware integrity verification process implemented in the Siemens SIMATIC S7-1200 PLC. The teams of researchers discovered that the hardware undocumented access mode was present in the bootloader code since 2013.

Firmware

Firmware Advertising Manufacturing Risk

Alfer Microsoft, also SonicWall confirmed that its products were affected by Y2K22 bug

Security Affairs

JANUARY 8, 2022

x firmware in MySonicWall downloads section for TZ, NSA and SOHO platforms. FIP-FS is the anti-malware scanning engine used by Microsoft to protect its users, it was used starting with Exchange Server 2013. x should upgrade to the latest Junk Store 7.6.9. Junk Store 7.6.9 installer is posted under SonicOS 6.5.x

Firewall

Firewall Engineering Firmware Malware

AT&T Alien Labs finds new Golang malware (BotenaGo) targeting millions of routers and IoT devices with more than 30 exploits

CyberSecurity Insiders

NOVEMBER 11, 2021

Ax with firmware 1.04b12 and earlier. NETGEAR DGN2200 devices with firmware through 10.0.0.50. CVE-2013-3307. CVE-2013-5223. Multiple ZyXEL network-attached storage (NAS) devices running firmware version 5.2, Affected products include: NAS326 before firmware V5.21(AAZF.7)C0 7)C0 NAS520 before firmware V5.21(AASZ.3)C0

Malware

Malware IoT Firmware Authentication

MoonBounce: the dark side of UEFI firmware

SecureList

JANUARY 20, 2022

At the end of 2021, we were made aware of a UEFI firmware-level compromise through logs from our Firmware Scanner , which has been integrated into Kaspersky products since the beginning of 2019. This one is made up of implants found in the UEFI firmware within the SPI flash, a non-volatile storage external to the hard drive.

Firmware

Firmware Malware Encryption Passwords

Critical Printing Shellz flaws impact 150 HP multifunction printer models

Security Affairs

NOVEMBER 30, 2021

The issues date back to 2013 and HP fixed them ([ 1 ], [ 2 ]) in November. In the modern firmware versions, printing from USB is disabled by default. Cybersecurity researchers from F-Secure have discovered two critical vulnerabilities, collectively tracked as Printing Shellz , that impact approximately 150 multifunction printer models.

Social Engineering

Social Engineering Firmware Engineering Hacking

Windows 11 is out. Is it any good for security?

Malwarebytes

OCTOBER 5, 2021

United Extensible Firmware Interface (UEFI). UEFI is a specification for the firmware that controls the first stages of booting up a computer, before the operating system is loaded. (It’s It’s been a feature of the Xbox One gaming console since 2013, but doesn’t exit in PCs… yet.

Firmware

Firmware Technology Social Engineering Software

Thrangrycat flaw could allow compromising millions of Cisco devices

Security Affairs

MAY 14, 2019

. “ A vulnerability in the logic that handles access control to one of the hardware components in Cisco’s proprietary Secure Boot implementation could allow an authenticated, local attacker to write a modified firmware image to the component.” ” reads the advisory published by Cisco.

Firmware

Firmware Authentication Software Advertising

Novidade, a new Exploit Kit is targeting SOHO Routers

Security Affairs

DECEMBER 11, 2018

A-Link WL54AP3 / WL54AP2 (CVE-2008-6823) D-Link DSL-2740R D-Link DIR 905L Medialink MWN-WAPR300 (CVE-2015-5996) Motorola SBG6580 Realtron Roteador GWR-120 Secutech RiS-11/RiS-22/RiS-33 (CVE-2018-10080) TP-Link TL-WR340G / TL-WR340GD TP-Link WR1043ND V1 (CVE-2013-2645). The latter attack hit websites worldwide.

DNS

DNS Advertising Firmware Banking

NEW TECH: Trend Micro inserts ‘X’ factor into ‘EDR’ – endpoint detection and response

The Last Watchdog

AUGUST 14, 2019

Here are my big takeaways: Prevention vs. detection In 2013, Gartner analyst Anton Chuvakin coined “EDR” to classify an emerging set of tools designed to go beyond signature-based antivirus software which was designed primarily to identify specific malicious binary files. For a full drill down, give a listen to the accompanying podcast.

Antivirus

Antivirus Digital transformation Firmware Software

NEW TECH: ICS zero-day flaws uncovered by Nozomi Networks’ analysis of anomalous behaviors

The Last Watchdog

AUGUST 26, 2019

In 2013, he co-founded Nozomi Networks aiming to deliver a more holistic and efficient way to defend industrial controls of all types. And not just of power plants and utilities, but also in the firmware and software that run manufacturing plants of all types and sizes, Carcano told me.

Artificial Intelligence

Artificial Intelligence Hacking Technology Firmware

NEW TECH: Nozomi Networks tracks anomalous behaviors, finds zero-day ICS vulnerabilities

The Last Watchdog

AUGUST 26, 2019

In 2013, he co-founded Nozomi Networks aiming to deliver a more holistic and efficient way to defend industrial controls of all types. And not just of power plants and utilities, but also in the firmware and software that run manufacturing plants of all types and sizes, Carcano told me.

Artificial Intelligence

Artificial Intelligence Hacking Technology Firmware

Kali Linux 2023.4 Release (Cloud ARM64, Vagrant Hyper-V & Raspberry Pi 5)

Kali Linux

DECEMBER 4, 2023

It is responsible for redirecting every request to its nearest mirror, based on a few factors such as geographic location, mirror speed, and mirror “freshness” Since Kali was launched back in March 2013, until November 2023 we had been using MirrorBrain.

Architecture

Architecture Passwords Firmware Software

Sounding the Alarm on Emergency Alert System Flaws

Krebs on Security

AUGUST 12, 2022

That may be because the patches were included in version 4 of the firmware for the EAS devices, and many older models apparently do not support the new software. According to the EAS wiki, in February 2013, hackers broke into the EAS networks in Great Falls, Mt. and Marquette, Mich.

Firmware

Firmware Manufacturing Passwords Software

The Hacker Mind: Hacking IoT

ForAllSecure

APRIL 22, 2021

In 2013, researcher Nitesh Dhanjani found that a popular brand used simple MD5 hashes of the device's MAC addresses for authentication. So that could be one of the things that affects that we're seeing a lot of firmware that is being reused across different devices, or are the same libraries like all over these across different projects.

IoT

IoT Hacking Internet Internet

The Hacker Mind: Hacking IoT

ForAllSecure

APRIL 22, 2021

In 2013, researcher Nitesh Dhanjani found that a popular brand used simple MD5 hashes of the device's MAC addresses for authentication. So that could be one of the things that affects that we're seeing a lot of firmware that is being reused across different devices, or are the same libraries like all over these across different projects.

IoT

IoT Hacking Internet Internet

Reassessing cyberwarfare. Lessons learned in 2022

SecureList

DECEMBER 14, 2022

For instance, in late 2013 and January 2014, we observed higher-than-normal activity in Ukraine by the Turla APT group, as well as a spike in the number of BlackEnergy APT sightings. It directly affected satellite modems firmwares , but was still to be understood as of mid-March.

DDOS

DDOS Ransomware Government Energy and Utilities

Growing Cyber Threats to the Energy and Industrial Sectors

NopSec

DECEMBER 7, 2016

Between 2013 and 2014, a Russia-backed group alternatively known as Dragonfly and Energetic Bear launched targeted attacks against energy sector companies by targeting suppliers and service providers used by these companies. Perhaps most troubling, attackers occasionally target the device firmware of industrial control systems.

Cyber threats

Cyber threats Cyber Attacks Ransomware Manufacturing

Maybe don’t call Saul? Over 30,000 VoIP devices identifiable worldwide, some with suspected vulnerabilities

Security Affairs

MAY 12, 2021

Older CVEs are more likely to have been mediated, and newer ones are less so since developers might not yet patch them and, even more frequently, the firmware might not be updated by users. Aastra Technologies was acquired by Mitel Networks Corporation, a Canadian company, at the end of 2013. Most devices.

Manufacturing

Manufacturing Internet Internet Firmware

Too much UPnP-enabled connected devices still vulnerable to cyber attacks

Security Affairs

MARCH 7, 2019

In early 2013, researchers at Rapid7 published an interesting whitepaper entitled “Security Flaws in Universal Plug and Play” that evaluated the global exposure of UPnP-enabled network devices. CVE-2013-0229 , a vulnerability found MiniUPnPd before 1.4, allows attackers to execute arbitrary code. • Pierluigi Paganini.

Cyber Attacks

Cyber Attacks Advertising Firmware Data collection

APT trends report Q1 2022

SecureList

APRIL 27, 2022

In December we were made aware of a UEFI firmware-level compromise through logs from our firmware scanning technology. Further analysis showed that the attackers modified a single component within the firmware to append a payload to one of its sections and incorporate inline hooks within particular functions.

Malware

Malware Firmware Government Phishing

How to protect your business from supply chain attacks

Malwarebytes

FEBRUARY 1, 2023

When American store Target found a Trojan designed to steal card details on its POS (point-of-sale) systems in 2013, no one expected that the route into its secure environment was its heating, ventilation, and air conditioning (HVAC) supplier, Fazio Mechanical Services.

Software

Software Risk Backups Technology

Hundreds of thousands of routers exposed to Eternal Silence campaign via UPnP?

Security Affairs

JANUARY 31, 2022

In early 2013, researchers at Rapid7 published an interesting whitepaper entitled “Security Flaws in Universal Plug and Play” that evaluated the global exposure of UPnP-enabled network devices. Experts recommend users installing routers update and patched firmware to mitigate the threat.

Internet

Internet Internet Firmware Hacking

Kali Linux 2021.2 Release (Kaboxer, Kali-Tweaks, Bleeding-Edge & Privileged Ports)

Kali Linux

MAY 31, 2021

Refreshed Bleeding-Edge Branch Kali’s Bleeding-Edge branch has been around since March 2013 , but we have recently completely restructured the backend. This is due to bluez , bluez-firmware , and pi-bluetooth packages forked and patched Raspberry Pi kernel updated to 5.4.83

Engineering

Engineering Firmware Architecture Backups

ETERNALSILENCE – 270K+ devices vulnerable to UPnProxy Botnet build using NSA hacking tools

Security Affairs

DECEMBER 1, 2018

In early 2013, researchers at Rapid7 published an interesting whitepaper entitled “Security Flaws in Universal Plug and Play” that evaluated the global exposure of UPnP-enabled network devices. Experts recommend users to install routers update and patched firmware to mitigate the threat.

Hacking

Hacking Internet Internet Advertising

NIST Cybersecurity Framework: IoT and PKI Security

Thales Cloud Protection & Licensing

NOVEMBER 7, 2017

For those who are unfamiliar, the NIST Cybersecurity Framework was created in 2013 as an attempt to standardize practices and give guidance on common, high-level security and privacy risks. In addition, IoT devices rarely follow the principles of security by design. Public key infrastructure (PKI) helps to address many of these concerns.

IoT

IoT Cybersecurity Digital transformation Manufacturing

Over 100 million Hikvision devices hit by critical cyber vulnerability

CyberSecurity Insiders

SEPTEMBER 24, 2021

As per the Hangzhou company that also offers IoT solutions, the only way to remediate the issue is to download the latest firmware from its website and keep the device updated with the software. It has a global business presence since 2001 and slowly captured the CCTV market of United States between 2013 to 2020.

Surveillance

Surveillance Firmware DDOS IoT

The Hacker Mind Podcast: The Right To Repair

ForAllSecure

FEBRUARY 10, 2021

” So should analyzing a device’s firmware for security flaws be considered illegal? It's, it was became law in 2013, Massachusetts legislature modified it a little bit before they actually put it onto the books. As Stuart Brand said back in 1984 “information wants to be free.”

InfoSec

InfoSec Manufacturing Technology Software

The Hacker Mind Podcast: The Right To Repair

ForAllSecure

FEBRUARY 10, 2021

” So should analyzing a device’s firmware for security flaws be considered illegal? It's, it was became law in 2013, Massachusetts legislature modified it a little bit before they actually put it onto the books. As Stuart Brand said back in 1984 “information wants to be free.”

InfoSec

InfoSec Manufacturing Technology Software

Cyber Security Informer

CosmicStrand malware targets old Asus and Gigabyte motherboards

BotenaGo botnet targets millions of IoT devices using 33 exploits

Webinars

Trending Sources

SonicWall warns of ‘imminent ransomware’ attacks on its EOL products

Webinars

New HP MFP vulnerabilities show why you should update and isolate printers

Ultimate Pentesting PwnBox (2013) - Utilite Pro

SonicWall warns users of “imminent ransomware campaign”

ZoomEye IoT search engine cached login passwords for tens of thousands of Dahua DVRs

Experts found undocumented access feature in Siemens SIMATIC PLCs

Alfer Microsoft, also SonicWall confirmed that its products were affected by Y2K22 bug

AT&T Alien Labs finds new Golang malware (BotenaGo) targeting millions of routers and IoT devices with more than 30 exploits

MoonBounce: the dark side of UEFI firmware

Critical Printing Shellz flaws impact 150 HP multifunction printer models

Windows 11 is out. Is it any good for security?

Thrangrycat flaw could allow compromising millions of Cisco devices

Novidade, a new Exploit Kit is targeting SOHO Routers

NEW TECH: Trend Micro inserts ‘X’ factor into ‘EDR’ – endpoint detection and response

NEW TECH: ICS zero-day flaws uncovered by Nozomi Networks’ analysis of anomalous behaviors

NEW TECH: Nozomi Networks tracks anomalous behaviors, finds zero-day ICS vulnerabilities

Kali Linux 2023.4 Release (Cloud ARM64, Vagrant Hyper-V & Raspberry Pi 5)

Sounding the Alarm on Emergency Alert System Flaws

The Hacker Mind: Hacking IoT

The Hacker Mind: Hacking IoT

Reassessing cyberwarfare. Lessons learned in 2022

Growing Cyber Threats to the Energy and Industrial Sectors

Maybe don’t call Saul? Over 30,000 VoIP devices identifiable worldwide, some with suspected vulnerabilities

Too much UPnP-enabled connected devices still vulnerable to cyber attacks

APT trends report Q1 2022

How to protect your business from supply chain attacks

Hundreds of thousands of routers exposed to Eternal Silence campaign via UPnP?

Kali Linux 2021.2 Release (Kaboxer, Kali-Tweaks, Bleeding-Edge & Privileged Ports)

ETERNALSILENCE – 270K+ devices vulnerable to UPnProxy Botnet build using NSA hacking tools

NIST Cybersecurity Framework: IoT and PKI Security

Over 100 million Hikvision devices hit by critical cyber vulnerability

The Hacker Mind Podcast: The Right To Repair

The Hacker Mind Podcast: The Right To Repair

Stay Connected