2015, DNS, Firewall and Internet - Cyber Security Informer

Some Zyxel devices can be hacked via DNS requests

Security Affairs

SEPTEMBER 4, 2019

Experts at SEC Consult discovered several security issues in various Zyxel devices that allow to hack them via unauthenticated DNS requests. The first issue is an information disclosure flaw via unauthenticated external DNS requests that affect Zyxel devices from the USG, UAG, ATP, VPN and NXC series. Pierluigi Paganini.

DNS

DNS Hacking Firmware Wireless

Spying on satellite internet comms with a $300 listening station

Security Affairs

AUGUST 10, 2020

An attacker could use $300 worth of off-the-shelf equipment to eavesdrop and intercept signals from satellite internet communications. The academic researcher James Pavur, speaking at Black Hat 2020 hacking conference , explained that satellite internet communications are susceptible to eavesdropping and signal interception.

Internet

Internet Internet Advertising Encryption

Massive increase in XorDDoS Linux malware in last six months

Malwarebytes

MAY 25, 2022

Based on a case study in 2015 , Akamai strengthened the theory that the malware may be of Asian origin based on its targets. Since Linux is deployed on many IoT (Internet of Things) devices and cloud infrastructures, we are likely to see DDoS (distributed denial-of-system) attacks from botnets that have compromised such devices.

Malware

Malware IoT DDOS DNS

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

Security Affairs newsletter Round 273

Security Affairs

JULY 19, 2020

Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

DNS

DNS Advertising Surveillance Malware

New Ttint IoT botnet exploits two zero-days in Tenda routers

Security Affairs

OCTOBER 5, 2020

Unlike other IoT DDoS botnets, Ttint implements 12 remote access functions such as Socket5 proxy for router devices, tampering with router firewall and DNS settings, executing remote custom system commands. ” ~ Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. ” concludes the report.

IoT

IoT Firmware DNS Advertising

Cyber Defense Magazine – September 2019 has arrived. Enjoy it!

Security Affairs

SEPTEMBER 4, 2019

In addition, we’re shooting for 7x24x365 uptime as we continue to scale with improved Web App Firewalls, Content Deliver Networks (CDNs) around the Globe, Faster and More Secure DNS and CyberDefenseMagazineBackup.com up and running as an array of live mirror sites.

DNS

DNS Advertising Firewall Mobile

FBI warns cyber actors abusing protocols as new DDoS attack vectors

Security Affairs

JULY 27, 2020

In December 2018, security experts from Trend Micro discovered that some machine-to-machine (M2M) protocols can be abused to attack IoT and industrial Internet of Things (IIoT) systems. According to our estimate, CoAP can reach up to 32 times (32x) amplification factor, which is roughly between the amplification power of DNS and SSDP.”.

DDOS

DDOS IoT Internet Internet

Critical zero-days discovered in VxWorks RTOS, billions of devices at risk

Security Affairs

JULY 30, 2019

Even a device that is reaching outbound to the internet could be attacked and taken over. “As an example of this scenario, consider how such an attack can take over the SonicWall firewall, which runs on the impacted VxWorks OS.” Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Risk

Risk IoT Firewall DNS

Controversial law entered into effect in Russia this week

Security Affairs

NOVEMBER 3, 2019

This week a controversial law entered into effect in Russia, it would allow the government to cut internet traffic from the global Internet. This week a controversial law entered into effect in Russia, it would allow the Russian government to disconnect the country from the global Internet.

Internet

Internet Internet DNS Government

Dozens of Linksys router models leak data useful for hackers

Security Affairs

MAY 18, 2019

The devices continue to leak the information even when their firewall is turned on. The vulnerable routers have remote access enabled by default, a gift for hackers that can perform a broad range of malicious activities, such as change DNS settings and deliver malware. Pierluigi Paganini. SecurityAffairs – LinkSys, Data leak).

Wireless

Wireless IoT DNS Advertising

Ripple20 flaws in Treck TCP/IP stack potentially expose hundreds of millions of devices to hack

Security Affairs

JUNE 16, 2020

A remote attacker could exploit the flaw by sending specially crafted IP packets or DNS requests to the vulnerable devices. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Many of the vulnerabilities have several variants due to the Stack configurability and code changes over the years.”

Hacking

Hacking IoT Advertising DNS

Black Hat USA 2023 NOC: Network Assurance

Cisco Security

AUGUST 28, 2023

XDR (eXtended Detection and Response) Integrations At Black Hat USA 2023, Cisco Secure was the official Mobile Device Management, DNS (Domain Name Service) and Malware Analysis Provider. For example, an IP tried AndroxGh0st Scanning Traffic against the Registration server, blocked by Palo Alto Networks firewall.

Wireless

Wireless DNS Mobile Technology

Point-of-Sale (POS) Security Measures for 2021

eSecurity Planet

FEBRUARY 8, 2021

If the infected device isn’t connected to the Internet, the malware waits for a USB device with a specific volume name to be connected, then copies stolen data to that device. The malware uploads data from the infected device to a command and control server, then uses an online parsing tool to separate out credit card data.

Retail

Retail Encryption Malware Artificial Intelligence

Abusing cloud services to fly under the radar

Fox IT

JANUARY 12, 2021

These credentials are used in a credential stuffing or password spraying attack against the victim’s remote services, such as webmail or other internet reachable mail services. This specific document described how to access the internet facing company portal and the web-based VPN client into the company network.

VPN

VPN Accountability Passwords DNS

Cyber Security Informer

Some Zyxel devices can be hacked via DNS requests

Spying on satellite internet comms with a $300 listening station

Webinars

Trending Sources

Massive increase in XorDDoS Linux malware in last six months

Webinars

Security Affairs newsletter Round 273

New Ttint IoT botnet exploits two zero-days in Tenda routers

Cyber Defense Magazine – September 2019 has arrived. Enjoy it!

FBI warns cyber actors abusing protocols as new DDoS attack vectors

Critical zero-days discovered in VxWorks RTOS, billions of devices at risk

Controversial law entered into effect in Russia this week

Top SD-WAN Solutions for Enterprise Security

Dozens of Linksys router models leak data useful for hackers

Ripple20 flaws in Treck TCP/IP stack potentially expose hundreds of millions of devices to hack

Black Hat USA 2023 NOC: Network Assurance

Point-of-Sale (POS) Security Measures for 2021

Abusing cloud services to fly under the radar

Stay Connected