2013, Firmware and Internet - Cyber Security Informer

MoonBounce: the dark side of UEFI firmware

SecureList

JANUARY 20, 2022

At the end of 2021, we were made aware of a UEFI firmware-level compromise through logs from our Firmware Scanner , which has been integrated into Kaspersky products since the beginning of 2019. This one is made up of implants found in the UEFI firmware within the SPI flash, a non-volatile storage external to the hard drive.

Firmware

Firmware Malware Encryption Passwords

BotenaGo botnet targets millions of IoT devices using 33 exploits

Security Affairs

NOVEMBER 11, 2021

Ax with firmware 1.04b12 and earlier CVE-2016-1555 Netgear WN604 before 3.3.3 CVE-2017-6077 NETGEAR DGN2200 devices with firmware through 10.0.0.50 Beta, D6220, D6400, D7000 CVE-2018-10561, CVE-2018-10562 GPON home routers CVE-2013-3307 Linksys X3000 1.0.03 CVE-2017-6077 NETGEAR DGN2200 devices with firmware through 10.0.0.50

IoT

IoT Firmware Malware Wireless

Maybe don’t call Saul? Over 30,000 VoIP devices identifiable worldwide, some with suspected vulnerabilities

Security Affairs

MAY 12, 2021

As with many inventions of the 20th century, the internet has drastically changed using the phone. Once a vital necessity in every building, PBX boxes are driven towards extinction by devices supporting Voice over Internet Protocol (VoIP). However, as with everything connected to the internet, beware of vulnerabilities.

Manufacturing

Manufacturing Internet Internet Firmware

SonicWall warns users of “imminent ransomware campaign”

Malwarebytes

JULY 15, 2021

The exploitation targets a known vulnerability that has been patched in newer versions of SonicWall firmware. x versions of the firmware. x firmware. x firmware versions. SSL-VPN 200/2000/400 (EOL 2013/2014) disconnect immediately and reset passwords. SMA 210/410/500v (Actively Supported) update firmware to 9.0.0.10-28sv

Ransomware

Ransomware Firmware Firewall Passwords

Privacy Roundup: Week 1 of Year 2025

Security Boulevard

JANUARY 4, 2025

Vulnerabilities and Malware Primarily includes severe and exploited vulnerabilities in devices or software used by end users (ex: a major router firmware flaw). It appears that primarily internet-facing devices are vulnerable (they typically have remote management interfaces exposed to the internet in most cases).

Data breaches

Data breaches Firmware Healthcare Malware

ZoomEye IoT search engine cached login passwords for tens of thousands of Dahua DVRs

Security Affairs

JULY 16, 2018

Anubhav explained that the passwords are related to Dahua DVRs running very old firmware that is known to be affected by a five-year-old vulnerability tracked as CVE-2013-6117. Even if the vulnerability has been patched, many Dahua devices are still running ancient firmware.

IoT

IoT Engineering Passwords Firmware

Too much UPnP-enabled connected devices still vulnerable to cyber attacks

Security Affairs

MARCH 7, 2019

. “The hackers behind it reportedly took advantage of poorly configured routers that had the Universal Plug and Play (UPnP) service enabled, which caused the routers to forward public ports to the private devices and be open to the public internet,” reads the analysis published by Yang. Pierluigi Paganini.

Cyber Attacks

Cyber Attacks Advertising Firmware Data collection

ETERNALSILENCE – 270K+ devices vulnerable to UPnProxy Botnet build using NSA hacking tools

Security Affairs

DECEMBER 1, 2018

In early 2013, researchers at Rapid7 published an interesting whitepaper entitled “Security Flaws in Universal Plug and Play” that evaluated the global exposure of UPnP-enabled network devices. Experts recommend users to install routers update and patched firmware to mitigate the threat. ” continues Akamai.

Hacking

Hacking Internet Internet Advertising

Hundreds of thousands of routers exposed to Eternal Silence campaign via UPnP?

Security Affairs

JANUARY 31, 2022

In early 2013, researchers at Rapid7 published an interesting whitepaper entitled “Security Flaws in Universal Plug and Play” that evaluated the global exposure of UPnP-enabled network devices. Experts recommend users installing routers update and patched firmware to mitigate the threat. ” continues Akamai.

Internet

Internet Internet Firmware Hacking

NEW TECH: ICS zero-day flaws uncovered by Nozomi Networks’ analysis of anomalous behaviors

The Last Watchdog

AUGUST 26, 2019

In 2013, he co-founded Nozomi Networks aiming to deliver a more holistic and efficient way to defend industrial controls of all types. And not just of power plants and utilities, but also in the firmware and software that run manufacturing plants of all types and sizes, Carcano told me. Talk more soon.

Hacking

Hacking Artificial Intelligence Technology Malware

NEW TECH: Trend Micro inserts ‘X’ factor into ‘EDR’ – endpoint detection and response

The Last Watchdog

AUGUST 14, 2019

Here are my big takeaways: Prevention vs. detection In 2013, Gartner analyst Anton Chuvakin coined “EDR” to classify an emerging set of tools designed to go beyond signature-based antivirus software which was designed primarily to identify specific malicious binary files. For a full drill down, give a listen to the accompanying podcast.

Antivirus

Antivirus Digital transformation Firmware Software

NEW TECH: Nozomi Networks tracks anomalous behaviors, finds zero-day ICS vulnerabilities

The Last Watchdog

AUGUST 26, 2019

In 2013, he co-founded Nozomi Networks aiming to deliver a more holistic and efficient way to defend industrial controls of all types. And not just of power plants and utilities, but also in the firmware and software that run manufacturing plants of all types and sizes, Carcano told me. Talk more soon.

Hacking

Hacking Artificial Intelligence Technology Malware

AT&T Alien Labs finds new Golang malware (BotenaGo) targeting millions of routers and IoT devices with more than 30 exploits

CyberSecurity Insiders

NOVEMBER 11, 2021

Ax with firmware 1.04b12 and earlier. NETGEAR DGN2200 devices with firmware through 10.0.0.50. CVE-2013-3307. CVE-2013-5223. Multiple ZyXEL network-attached storage (NAS) devices running firmware version 5.2, Affected products include: NAS326 before firmware V5.21(AAZF.7)C0 7)C0 NAS520 before firmware V5.21(AASZ.3)C0

Malware

Malware IoT Firmware Authentication

How to protect your business from supply chain attacks

Malwarebytes

FEBRUARY 1, 2023

When American store Target found a Trojan designed to steal card details on its POS (point-of-sale) systems in 2013, no one expected that the route into its secure environment was its heating, ventilation, and air conditioning (HVAC) supplier, Fazio Mechanical Services. Any threats coming from the internet must be stopped at the endpoint.

Software

Software Backups Risk Technology

Smart home security advice. Ring, SimpliSafe, Swann, and Yale

Pen Test Partners

SEPTEMBER 9, 2024

Ring started in 2013, offering video doorbells that let you see and talk to visitors from your phone. SimpliSafe downplayed the risk and did not address the issue with a simple firmware update, suggesting that a full device replacement might be needed. SimpliSafe quickly fixed this with a firmware update. Who is Ring?

Firmware

Firmware Encryption Passwords Authentication

The Hacker Mind: Hacking IoT

ForAllSecure

APRIL 22, 2021

In 2013, researcher Nitesh Dhanjani found that a popular brand used simple MD5 hashes of the device's MAC addresses for authentication. The question is, who is hacking the internet of things today, and how does one even get started? So we settled upon the Internet of Things, or simply IoT.

IoT

IoT Hacking Internet Internet

The Hacker Mind: Hacking IoT

ForAllSecure

APRIL 22, 2021

In 2013, researcher Nitesh Dhanjani found that a popular brand used simple MD5 hashes of the device's MAC addresses for authentication. The question is, who is hacking the internet of things today, and how does one even get started? So we settled upon the Internet of Things, or simply IoT.

IoT

IoT Hacking Internet Internet

Sounding the Alarm on Emergency Alert System Flaws

Krebs on Security

AUGUST 12, 2022

That may be because the patches were included in version 4 of the firmware for the EAS devices, and many older models apparently do not support the new software. According to the EAS wiki, in February 2013, hackers broke into the EAS networks in Great Falls, Mt. and Marquette, Mich.

Firmware

Firmware Manufacturing Passwords Software

Reassessing cyberwarfare. Lessons learned in 2022

SecureList

DECEMBER 14, 2022

For instance, in late 2013 and January 2014, we observed higher-than-normal activity in Ukraine by the Turla APT group, as well as a spike in the number of BlackEnergy APT sightings. It directly affected satellite modems firmwares , but was still to be understood as of mid-March.

DDOS

DDOS Ransomware Government Energy and Utilities

NIST Cybersecurity Framework: IoT and PKI Security

Thales Cloud Protection & Licensing

NOVEMBER 7, 2017

For those who are unfamiliar, the NIST Cybersecurity Framework was created in 2013 as an attempt to standardize practices and give guidance on common, high-level security and privacy risks. But its guidance, created with years of input from stakeholders, applies to the private sector and to enterprises of all sizes.

IoT

IoT Cybersecurity Manufacturing Digital transformation

The Hacker Mind Podcast: The Right To Repair

ForAllSecure

FEBRUARY 10, 2021

” So should analyzing a device’s firmware for security flaws be considered illegal? It's, it was became law in 2013, Massachusetts legislature modified it a little bit before they actually put it onto the books. As Stuart Brand said back in 1984 “information wants to be free.”

InfoSec

InfoSec Manufacturing Technology Software

The Hacker Mind Podcast: The Right To Repair

ForAllSecure

FEBRUARY 10, 2021

” So should analyzing a device’s firmware for security flaws be considered illegal? It's, it was became law in 2013, Massachusetts legislature modified it a little bit before they actually put it onto the books. As Stuart Brand said back in 1984 “information wants to be free.”

InfoSec

InfoSec Manufacturing Technology Software

Cyber Security Informer

MoonBounce: the dark side of UEFI firmware

BotenaGo botnet targets millions of IoT devices using 33 exploits

Trending Sources

Maybe don’t call Saul? Over 30,000 VoIP devices identifiable worldwide, some with suspected vulnerabilities

SonicWall warns users of “imminent ransomware campaign”

Privacy Roundup: Week 1 of Year 2025

ZoomEye IoT search engine cached login passwords for tens of thousands of Dahua DVRs

Too much UPnP-enabled connected devices still vulnerable to cyber attacks

ETERNALSILENCE – 270K+ devices vulnerable to UPnProxy Botnet build using NSA hacking tools

Hundreds of thousands of routers exposed to Eternal Silence campaign via UPnP?

NEW TECH: ICS zero-day flaws uncovered by Nozomi Networks’ analysis of anomalous behaviors

NEW TECH: Trend Micro inserts ‘X’ factor into ‘EDR’ – endpoint detection and response

NEW TECH: Nozomi Networks tracks anomalous behaviors, finds zero-day ICS vulnerabilities

AT&T Alien Labs finds new Golang malware (BotenaGo) targeting millions of routers and IoT devices with more than 30 exploits

How to protect your business from supply chain attacks

Smart home security advice. Ring, SimpliSafe, Swann, and Yale

The Hacker Mind: Hacking IoT

The Hacker Mind: Hacking IoT

Sounding the Alarm on Emergency Alert System Flaws

Reassessing cyberwarfare. Lessons learned in 2022

NIST Cybersecurity Framework: IoT and PKI Security

The Hacker Mind Podcast: The Right To Repair

The Hacker Mind Podcast: The Right To Repair

Stay Connected