2018, Firmware, Internet and VPN - Cyber Security Informer

2018

Firmware

Internet

VPN

MyBook Users Urged to Unplug Devices from Internet

Krebs on Security

JUNE 25, 2021

Hard drive giant Western Digital is urging users of its MyBook Live brand of network storage drives to disconnect them from the Internet, warning that malicious hackers are remotely wiping the drives using a critical flaw that can be triggered by anyone who knows the Internet address of an affected device.

Internet

Internet Internet Backups Small Business

ASUS addressed critical flaws in some router models

Security Affairs

JUNE 19, 2023

ASUS addressed critical vulnerabilities in multiple router models, urging customers to immediately install firmware updates. ASUS is warning customers to update some router models to the latest firmware to address critical vulnerabilities. CVE-2018-1160 is an out-of-bounds write issue that resides in dsi_opensess.c.

Firmware

Firmware VPN Wireless Passwords

Join 29,000+

Insiders

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

Trending Sources

335,923 out of 489,337 Fortinet firewalls vulnerable to CVE-2023-27997

Security Affairs

JULY 3, 2023

Researchers reported that there are 490,000 Fortinet firewalls exposing SSL VPN interfaces on the internet, and roughly 69% of them are still vulnerable to CVE-2023-27997. For this reason, if the customer has SSL-VPN enabled, Fortinet is advising customers to take immediate action to upgrade to the most recent firmware release.

Firewall

Firewall VPN Firmware Internet

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

A new Zerobot variant spreads by exploiting Apache flaws

Security Affairs

DECEMBER 22, 2022

Microsoft Threat Intelligence Center (MSTIC) researchers discovered a new variant of the Zerobot botnet (aka ZeroStresser) that was improved with the capabilities to target more Internet of Things (IoT) devices. Maintain device health with updates: Make sure devices are up to date with the latest firmware and patches.

IoT

IoT DDOS Malware Firmware

Interview With a Crypto Scam Investment Spammer

Krebs on Security

MAY 22, 2023

Chaput said the spammers used more than 1,500 Internet addresses across 400 providers to register new accounts, which then followed popular accounts on Mastodon and sent private mentions to the followers of those accounts. that were created from different Internet addresses in Vienna, Austria.

Scams

Scams DDOS Cryptocurrency Accountability

Cybersecurity Agencies Reveal the Top Exploited Vulnerabilities of 2021

eSecurity Planet

APRIL 28, 2022

Malicious actors tend to focus on internet-facing systems to gain entry into a network, such as email and virtual private network (VPN) servers, using exploits targeting newly disclosed vulnerabilities. CVE-2018-13379. CVE-2018-0171. Also read: Best Patch Management Software & Tools. Web-Facing Systems at Risk.

Cybersecurity

Cybersecurity Software Firmware Internet

FBI and CISA are warning of APT actors targeting Fortinet FortiOS servers

Security Affairs

APRIL 2, 2021

The threat actors are actively exploiting the following vulnerabilities in Fortinet FortiOS: CVE-2018-13379 ; CVE-2020-12812 ; CVE-2019-5591. In March 2021, government experts observed state sponsored hackers scanning the internet for servers vulnerable to the above flaws, the attackers were probing systems on ports 4443, 8443, and 10443.

Passwords

Passwords Government Firmware Accountability

WizCase Report: Vulnerabilities found in WD My Book, NetGear Stora, SeaGate Home, Medion LifeCloud NAS

Security Affairs

OCTOBER 20, 2018

Both the vulnerabilities (dubbed CVE-2018-18472 and CVE-2018-18471) remain unpatched at the time of this publication. CVE-2018-18472 – XXE and Unauthenticated Remote Command Execution in Axentra Hipserv NAS firmware. . The company provides a firmware with a web interface that mainly uses PHP as a serverside language.

Firmware

Firmware IoT VPN Authentication

GUEST ESSAY: The story behind how DataTribe is helping to seed ‘Cybersecurity Valley’ in Maryland

The Last Watchdog

JUNE 4, 2019

and Tenable, which went public in 2018 with a market capitalization of approximately $4 billion. has also attracted a powerful and growing flow of venture capital to the region – about $1 Billion in 2018 and growing at an incredible pace. Two notable examples are Sourcefire, acquired by Cisco for $2.7B

Cybersecurity

Cybersecurity Computers and Electronics Technology Marketing

IoT Secure Development Guide

Pen Test Partners

OCTOBER 9, 2023

Threat modeling can be applied to a wide range of things, including software, applications, systems, networks, distributed systems, Internet of Things (IoT) devices, and business processes. Deploy malicious firmware. link] [link] Have a software/firmware update mechanism. OWASP [link] Back to Table of contents▲ 1.1.

IoT

IoT Firmware Mobile Manufacturing

Barracuda SecureEdge SASE Review 2023

eSecurity Planet

SEPTEMBER 22, 2023

Barracuda once traded publicly on the NYSE under the ticker symbol CUDA, but as of 2018 has been taken private by Thoma Bravo. These one, three, and five year subscriptions provide enhanced support for the hardware, firmware maintenance, security updates, and optional participation in early-release firmware updates.

Firewall

Firewall Marketing Firmware Technology

APT trends report Q3 2021

SecureList

OCTOBER 26, 2021

Lyceum is a threat group operating against high-profile targets in the Middle East since at least 2018. The samples we analyzed mimicked various applications such as private messaging, VPN, and media services. This version was detected and researched several times up to 2018. Middle East.

Malware

Malware Government Surveillance Spyware

Cyber Security Informer

MyBook Users Urged to Unplug Devices from Internet

ASUS addressed critical flaws in some router models

Webinars

Trending Sources

335,923 out of 489,337 Fortinet firewalls vulnerable to CVE-2023-27997

Webinars

A new Zerobot variant spreads by exploiting Apache flaws

Interview With a Crypto Scam Investment Spammer

Cybersecurity Agencies Reveal the Top Exploited Vulnerabilities of 2021

FBI and CISA are warning of APT actors targeting Fortinet FortiOS servers

WizCase Report: Vulnerabilities found in WD My Book, NetGear Stora, SeaGate Home, Medion LifeCloud NAS

GUEST ESSAY: The story behind how DataTribe is helping to seed ‘Cybersecurity Valley’ in Maryland

IoT Secure Development Guide

Barracuda SecureEdge SASE Review 2023

APT trends report Q3 2021

Top SD-WAN Solutions for Enterprise Security

Stay Connected