2014, DDOS, Firmware and Hacking - Cyber Security Informer

Attackers are hacking NSC Linear eMerge E3 building access systems to launch DDoS attacks

Security Affairs

FEBRUARY 3, 2020

Researchers from SonicWall revealed that hackers are attempting to compromise Linear eMerge E3 smart building access systems to recruit them in a DDoS botnet. CVE-2019-7256 is actively being exploited by DDoS botnet operators. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. 06 and older.

DDOS

DDOS Hacking Internet Internet

InfectedSlurs botnet targets QNAP VioStor NVR vulnerability

Security Affairs

DECEMBER 17, 2023

In November, Akamai warned of a new Mirai -based DDoS botnet, named InfectedSlurs , actively exploiting two zero-day vulnerabilities to infect routers and video recorder (NVR) devices. that impacted several routers, including Future X Communications (FXC) AE1021 and AE1021PE wall routers, running firmware versions 2.0.9 and earlier.

Firmware

Firmware Wireless DDOS IoT

New Ttint IoT botnet exploits two zero-days in Tenda routers

Security Affairs

OCTOBER 5, 2020

Unlike other IoT DDoS botnets, Ttint implements 12 remote access functions such as Socket5 proxy for router devices, tampering with router firewall and DNS settings, executing remote custom system commands. According to the experts, Tenda routers running a firmware version between AC9 to AC18 are vulnerable to the attack.

IoT

IoT Firmware DNS Advertising

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

Interview With a Crypto Scam Investment Spammer

Krebs on Security

MAY 22, 2023

Shortly after that, those same servers came under a sustained distributed denial-of-service (DDoS) attack. Chaput said whoever was behind the DDoS was definitely not using point-and-click DDoS tools, like a booter or stresser service. A DIRECT QUOT The domain quot[.]pw In May 2020, Zipper told another Lolzteam member that quot[.]pw

Scams

Scams DDOS Cryptocurrency Accountability

Million of Telestar Digital GmbH IoT radio devices can be remotely hacked

Security Affairs

SEPTEMBER 10, 2019

The hardware of the terminals is equipped with Shenzen technology, while the firmware is based on BusyBox Linux Debian. . According to Kunz, more than one million devices are potentially at risk, an attacker can trigger the flaws to build a huge botnet that could be used to launch powerful DDoS attacks. ” continues the experts.

IoT

IoT Hacking Firmware Advertising

Thousands of Xiaomi FURRYTAIL pet feeders exposed to hack

Security Affairs

OCTOBER 30, 2019

A Russian security researcher accidentally discovered API and firmware issues that allowed her to take over all Xiaomi FurryTail pet feeders. The Russian security researcher Anna Prosvetova, from Saint Petersburg, has accidentally discovered API and firmware issues that allowed her to take over all Xiaomi FurryTail pet feeders.

Hacking

Hacking Firmware Advertising DDOS

Both Mirai and Hoaxcalls IoT botnets target Symantec Web Gateways

Security Affairs

MAY 19, 2020

“There is no evidence to support any other firmware versions are vulnerable at this point in time and these findings have been shared with Symantec.” The botnet borrows the code from Tsunami and Gafgyt botnets, it expanded the list of targeted devices and added new distributed denial of service (DDoS) capabilities.

IoT

IoT DDOS Authentication Advertising

Mozi Botnet is responsible for most of the IoT Traffic

Security Affairs

SEPTEMBER 20, 2020

According to the researchers, in the last months of 2019, the botnet was mainly involved in DDoS attacks. The botnet supports the following capabilities: DDoS attack Collecting Bot Information Execute the payload of the specified URL Update the sample from the specified URL Execute system or custom commands. Pierluigi Paganini.

IoT

IoT DDOS Architecture Passwords

NCSC warns of a surge in ransomware attacks on education institutions

Security Affairs

SEPTEMBER 20, 2020

Recently Check Point researchers warned of a surge in the DDoS attacks against education institutions and the academic industry across the world. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Education

Education Ransomware Antivirus Backups

Roughly 500,000 Ubiquiti devices may be affected by flaw already exploited in the wild

Security Affairs

FEBRUARY 4, 2019

Ubiquiti is aware of the issue and is currently working on a firmware update that will address it anyway it is trying to downplay it. “To our current knowledge, this issue cannot be used to gain control of network devices or to create a DDoS attack.” Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

DDOS

DDOS Advertising Firmware Hacking

Reassessing cyberwarfare. Lessons learned in 2022

SecureList

DECEMBER 14, 2022

For instance, in late 2013 and January 2014, we observed higher-than-normal activity in Ukraine by the Turla APT group, as well as a spike in the number of BlackEnergy APT sightings. It directly affected satellite modems firmwares , but was still to be understood as of mid-March.

DDOS

DDOS Ransomware Government Energy and Utilities

Roughly 500,000 Ubiquity devices may be affected by flaw already exploited in the wild

Security Affairs

FEBRUARY 4, 2019

Ubiquity is aware of the issue and is currently working on a firmware update that will address it anyway it is trying to downplay it. “To our current knowledge, this issue cannot be used to gain control of network devices or to create a DDoS attack.” ” reads the advisory published by Ubiquity.

DDOS

DDOS Advertising Firmware Internet

Mirai code re-use in Gafgyt

Security Affairs

APRIL 16, 2021

HTTP flooding is a kind of DDoS attack in which the attacker sends a large number of HTTP requests to the targeted server to overwhelm it. UDP flooding is a type of DDoS attack in which an attacker sends several UDP packets to the victim server as a means of exhausting it. Figure 7: Realtek Exploit inside binary (CVE-2014-8361).

Malware

Malware DDOS IoT Firmware

QSnatch malware already infected thousands of QNAP NAS devices

Security Affairs

NOVEMBER 4, 2019

“The original infection method remains unknown, but during that phase malicious code is injected to the firmware of the target system, and the code is then run as part of normal operations within the device. DDoS attack, cryptocurrency miner, data harvesting). ” reads the report. After this the device has been compromised.

Malware

Malware Firmware Advertising Encryption

The Death botnet grows targeting AVTech devices with a 2-years old exploit

Security Affairs

JULY 25, 2018

EliteLands is using a 2-years old exploit that could be used to trigger tens of well-known vulnerabilities in the AVTech firmware. Many products of the vendor currently run the vulnerable firmware, including DVRs, NVRs, and IP cameras. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Firmware

Firmware Passwords IoT Advertising

Experts discloses dangerous flaws in robotic Dongguan Diqee 360 smart vacuums

Security Affairs

JULY 20, 2018

“Like any other IoT device, these robot vacuum cleaners could be marshalled into a botnet for DDoS attacks, but that’s not even the worst-case scenario, at least for owners. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

Firmware

Firmware Surveillance Authentication Technology

IoT Cybersecurity: 5 Major Vulnerabilities and How to Tackle Them

Security Affairs

OCTOBER 13, 2020

Nobody told them that their coffee machine could be hacked into or that their camera could be used to launch a DDoS attack. Even if a local network is completely secured and all IoT devices on it have firmware and software updated to the last version, a shadow IoT device can wreak havoc. SecurityAffairs – hacking, IoT).

IoT

IoT Cybersecurity Manufacturing Internet

Experts hacked 28,000 unsecured printers to raise awareness of printer security issues

Security Affairs

AUGUST 27, 2020

Example of available open printers on a single IoT search engine (Shodan.io): As we can see, many users and organizations still use internet-connected devices without thinking about security, installing firmware updates, or taking into account the implications of leaving their devices publicly accessible. Change the default password.

Hacking

Hacking IoT Firmware Internet

Mukashi, the new Mirai variant that targets Zyxel NAS

Security Affairs

MARCH 21, 2020

Multiple, if not all, Zyxel NAS products running firmware versions up to 5.21 The bot supports various commands, like Mirai, such as launching DDoS attacks. Like other Mirai variants, Mukashi is also capable of receiving C2 commands and launching DDoS attacks.” The vendor advisory is also available. to the console. .

DDOS

DDOS Authentication Advertising Firmware

EP 31: Stopping the Mirai IoT Botnet, One CnC Server At A Time

ForAllSecure

OCTOBER 5, 2021

That would make this denial of service attack roughly twice as powerful as any similar previously recorded DDoS attack at the time. Vamosi: Welcome to The Hacker Mind and original podcast from ForAllSecure, it's about challenging our expectations about the people who hack for a living. terabits per second.

IoT

IoT DDOS Malware Internet

Cyber Security Informer

Attackers are hacking NSC Linear eMerge E3 building access systems to launch DDoS attacks

InfectedSlurs botnet targets QNAP VioStor NVR vulnerability

Webinars

Trending Sources

New Ttint IoT botnet exploits two zero-days in Tenda routers

Webinars

Interview With a Crypto Scam Investment Spammer

Million of Telestar Digital GmbH IoT radio devices can be remotely hacked

Thousands of Xiaomi FURRYTAIL pet feeders exposed to hack

Both Mirai and Hoaxcalls IoT botnets target Symantec Web Gateways

Mozi Botnet is responsible for most of the IoT Traffic

NCSC warns of a surge in ransomware attacks on education institutions

Roughly 500,000 Ubiquiti devices may be affected by flaw already exploited in the wild

Reassessing cyberwarfare. Lessons learned in 2022

Roughly 500,000 Ubiquity devices may be affected by flaw already exploited in the wild

Mirai code re-use in Gafgyt

QSnatch malware already infected thousands of QNAP NAS devices

The Death botnet grows targeting AVTech devices with a 2-years old exploit

Experts discloses dangerous flaws in robotic Dongguan Diqee 360 smart vacuums

IoT Cybersecurity: 5 Major Vulnerabilities and How to Tackle Them

Experts hacked 28,000 unsecured printers to raise awareness of printer security issues

Mukashi, the new Mirai variant that targets Zyxel NAS

EP 31: Stopping the Mirai IoT Botnet, One CnC Server At A Time

Stay Connected