2018, Firewall, Firmware and Internet - Cyber Security Informer

MyBook Users Urged to Unplug Devices from Internet

Krebs on Security

JUNE 25, 2021

Hard drive giant Western Digital is urging users of its MyBook Live brand of network storage drives to disconnect them from the Internet, warning that malicious hackers are remotely wiping the drives using a critical flaw that can be triggered by anyone who knows the Internet address of an affected device.

Internet

Internet Internet Backups Small Business

335,923 out of 489,337 Fortinet firewalls vulnerable to CVE-2023-27997

Security Affairs

JULY 3, 2023

Researchers reported that there are 490,000 Fortinet firewalls exposing SSL VPN interfaces on the internet, and roughly 69% of them are still vulnerable to CVE-2023-27997. For this reason, if the customer has SSL-VPN enabled, Fortinet is advising customers to take immediate action to upgrade to the most recent firmware release.

Firewall

Firewall VPN Firmware Internet

SHARED INTEL: How ‘memory attacks’ and ‘firmware spoilage’ circumvent perimeter defenses

The Last Watchdog

NOVEMBER 20, 2019

Related: Ransomware remains a scourge The former has been accused of placing hidden backdoors in the firmware of equipment distributed to smaller telecom companies all across the U.S. percent from 2018. Firmware is on everything from hard drives, motherboards and routers to office printers and smart medical devices.

Firmware

Firmware Hacking Software Surveillance

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

Cyclops Blink malware: US and UK authorities issue alert

Malwarebytes

FEBRUARY 24, 2022

According to WatchGuard , Cyclops Blink may have affected approximately 1% of active firewall appliances, which are devices mainly used by business customers. Cyclops Blink has been found in WatchGuard’s firewall devices since at least June 2019. Internet access to the management interface of any device is a security risk.

Malware

Malware Firewall Firmware DDOS

A daily average of 80,000 printers exposed online via IPP

Security Affairs

JUNE 23, 2020

The Shadowserver Foundation is a nonprofit security organization working altruistically behind the scenes to make the Internet more secure for everyone. The researchers scanned the Internet for printers that are exposing their Internet Printing Protocol (IPP) port online. and printers (or print servers). .

Internet

Internet Internet Firmware Advertising

AT&T Alien Labs finds new Golang malware (BotenaGo) targeting millions of routers and IoT devices with more than 30 exploits

CyberSecurity Insiders

NOVEMBER 11, 2021

Ax with firmware 1.04b12 and earlier. NETGEAR DGN2200 devices with firmware through 10.0.0.50. CVE-2018-10561, CVE-2018-10562. CVE-2018-10088. Multiple ZyXEL network-attached storage (NAS) devices running firmware version 5.2, Affected products include: NAS326 before firmware V5.21(AAZF.7)C0

Malware

Malware IoT Firmware Authentication

Millions of Xiongmai video surveillance devices can be easily hacked via cloud feature

Security Affairs

OCTOBER 10, 2018

Additionally, no firewall rules, port forwarding rules, or DDNS setup are required on the router, which makes this option convenient also for non-tech-savvy users.” The “P2P Cloud” feature bypasses firewalls and effectively allows remote connections into private networks. ” reads the report published by SEC Consult. !

Surveillance

Surveillance Hacking Firmware Manufacturing

US dismantled the Russia-linked Cyclops Blink botnet

Security Affairs

APRIL 6, 2022

“The operation copied and removed malware from vulnerable internet-connected firewall devices that Sandworm used for command and control (C2) of the underlying botnet.” The malware leverages the firmware update process to achieve persistence. ” reads the press release published by DoJ. ” reads the DoJ.

Malware

Malware Government Firmware Firewall

Key Reuse opens to attacks on IPsec IKE, Cisco, Huawei, ZyXEL products are affected

Security Affairs

AUGUST 14, 2018

” The experts focused their analysis on the impact of key reuse on Internet Protocol Security (IPsec). The cryptographic key for IPsec leverages the Internet Key Exchange (IKE) protocol, which has two versions, IKEv1 and IKEv2. According to the Huawei’s advisory , its firewall products are affected by the flaw.

Encryption

Encryption Authentication Internet Internet

Q&A: How emulating attacks in a live environment can more pervasively protect complex networks

The Last Watchdog

SEPTEMBER 4, 2018

And at Black Hat USA 2018 , the company unveiled a new CyberFlood functionality that makes it possible for an enterprise to emulate a real-world attack in a live environment. For instance, they might want to test new signatures published by their firewall vendor, before pushing it out, to make sure there are no regression issues.

Penetration Testing

Penetration Testing Firewall Data breaches Malware

WizCase Report: Vulnerabilities found in WD My Book, NetGear Stora, SeaGate Home, Medion LifeCloud NAS

Security Affairs

OCTOBER 20, 2018

Both the vulnerabilities (dubbed CVE-2018-18472 and CVE-2018-18471) remain unpatched at the time of this publication. CVE-2018-18472 – XXE and Unauthenticated Remote Command Execution in Axentra Hipserv NAS firmware. . The company provides a firmware with a web interface that mainly uses PHP as a serverside language.

Firmware

Firmware IoT VPN Authentication

BotenaGo strikes again – malware source code uploaded to GitHub

CyberSecurity Insiders

JANUARY 26, 2022

Maintain minimal exposure to the Internet on Linux servers and IoT devices and use a properly configured firewall. Install security and firmware upgrades from vendors, as soon as possible. 2830690: ETPRO EXPLOIT GPON Authentication Bypass Attempt (CVE-2018-10561). Recommended actions. Conclusion. SURICATA IDS SIGNATURES.

Malware

Malware IoT Authentication Antivirus

Top 9 Cybersecurity Challenges SMEs Currently Face

Responsible Cyber

APRIL 8, 2020

Small and mid-sized enterprises (SMEs) are increasingly at risk of cyber-attacks, and often serve as a launch pad for larger threat campaigns, according to Cisco’s 2018 SMB Cybersecurity Report. The Internet of Things (IoT) is undeniably the future of technology. IoT Opens Excessive Entry Points. SQL Injection.

Cybersecurity

Cybersecurity DDOS Small Business Phishing

GUEST ESSAY: The story behind how DataTribe is helping to seed ‘Cybersecurity Valley’ in Maryland

The Last Watchdog

JUNE 4, 2019

and Tenable, which went public in 2018 with a market capitalization of approximately $4 billion. has also attracted a powerful and growing flow of venture capital to the region – about $1 Billion in 2018 and growing at an incredible pace. Two notable examples are Sourcefire, acquired by Cisco for $2.7B

Cybersecurity

Cybersecurity Computers and Electronics Technology Marketing

Barracuda SecureEdge SASE Review 2023

eSecurity Planet

SEPTEMBER 22, 2023

The Barracuda SecureEdge SASE product builds off the well established Barracuda security products (firewalls, gateways, email security, and more) that already protect so many global companies. Barracuda once traded publicly on the NYSE under the ticker symbol CUDA, but as of 2018 has been taken private by Thoma Bravo.

Firewall

Firewall Marketing Firmware Technology

Sounding the Alarm on Emergency Alert System Flaws

Krebs on Security

AUGUST 12, 2022

That may be because the patches were included in version 4 of the firmware for the EAS devices, and many older models apparently do not support the new software. ” In January 2018, Hawaii sent out an alert to cell phones, televisions and radios, warning everyone in the state that a missile was headed their way.

Firmware

Firmware Manufacturing Passwords Software

Experts hacked 28,000 unsecured printers to raise awareness of printer security issues

Security Affairs

AUGUST 27, 2020

To perform the experiment, we used Internet of Things (IoT) search engines to search for open devices that utilized common printer ports and protocols. After filtering out most of the false positives, we were left with more than 800,000 printers that had network printing features enabled and were accessible over the internet.

Hacking

Hacking IoT Firmware Internet

How to Protect Operational Technology (OT) from Cyber Threats

CyberSecurity Insiders

JUNE 2, 2023

OT systems often come as closed systems with firmware and software installed by a supplier. In practice, however, air-gapping an OT system or firewalling its protected network is only the beginning of hardening its overall security. It also does not require an internet connection, updates to date telemetry, or modern OS versions.

Cyber threats

Cyber threats Technology Firewall Ransomware

FortiNAC: Network Access Control (NAC) Product Review

eSecurity Planet

MARCH 30, 2023

Although best known for their industry-leading firewall technology, Fortinet harnesses their knowledge of network protection to create a powerful network access control (NAC) solution. Founded in 2000 , Sunnyvale, California headquartered Fortinet’s flagship FortiGate provides enterprise-grade firewall solutions. Who is Fortinet?

IoT

IoT Firewall Wireless Mobile

Too much UPnP-enabled connected devices still vulnerable to cyber attacks

Security Affairs

MARCH 7, 2019

. “The hackers behind it reportedly took advantage of poorly configured routers that had the Universal Plug and Play (UPnP) service enabled, which caused the routers to forward public ports to the private devices and be open to the public internet,” reads the analysis published by Yang. Pierluigi Paganini.

Cyber Attacks

Cyber Attacks Advertising Firmware Data collection

DDoS attacks in Q4 2020

SecureList

FEBRUARY 16, 2021

After the attacks came to light, the manufacturer promptly released a firmware update for configuring verification of incoming requests. Educational institutions are recommended to use anti-DDoS solutions and strong firewall settings, and partner up with ISPs. Gaming platforms didn’t escape cybercriminal attention either.

DDOS

DDOS Cryptocurrency Marketing Internet

Cyber Security Informer

MyBook Users Urged to Unplug Devices from Internet

335,923 out of 489,337 Fortinet firewalls vulnerable to CVE-2023-27997

Webinars

Trending Sources

SHARED INTEL: How ‘memory attacks’ and ‘firmware spoilage’ circumvent perimeter defenses

Webinars

Cyclops Blink malware: US and UK authorities issue alert

A daily average of 80,000 printers exposed online via IPP

AT&T Alien Labs finds new Golang malware (BotenaGo) targeting millions of routers and IoT devices with more than 30 exploits

Millions of Xiongmai video surveillance devices can be easily hacked via cloud feature

US dismantled the Russia-linked Cyclops Blink botnet

Key Reuse opens to attacks on IPsec IKE, Cisco, Huawei, ZyXEL products are affected

Q&A: How emulating attacks in a live environment can more pervasively protect complex networks

WizCase Report: Vulnerabilities found in WD My Book, NetGear Stora, SeaGate Home, Medion LifeCloud NAS

BotenaGo strikes again – malware source code uploaded to GitHub

Top 9 Cybersecurity Challenges SMEs Currently Face

GUEST ESSAY: The story behind how DataTribe is helping to seed ‘Cybersecurity Valley’ in Maryland

Barracuda SecureEdge SASE Review 2023

Sounding the Alarm on Emergency Alert System Flaws

Experts hacked 28,000 unsecured printers to raise awareness of printer security issues

How to Protect Operational Technology (OT) from Cyber Threats

FortiNAC: Network Access Control (NAC) Product Review

Too much UPnP-enabled connected devices still vulnerable to cyber attacks

DDoS attacks in Q4 2020

Top SD-WAN Solutions for Enterprise Security

Stay Connected