2018, Firmware and VPN - Cyber Security Informer

Sophos details five years of China-linked threat actors’ activity targeting network devices worldwide

Security Affairs

NOVEMBER 2, 2024

Since 2018, Sophos has faced increasingly aggressive campaigns, including the India-based Sophos subsidiary Cyberoam, where attackers exploited a wall-mounted display for initial access. The first documented attack against a Sophos facility is the one that targeted Cyberoam in 2018. ” concludes the report.

Firmware

Firmware Government Firewall Malware

MyBook Users Urged to Unplug Devices from Internet

Krebs on Security

JUNE 25, 2021

The My Book Live and My Book Live Duo devices received its final firmware update in 2015. ” Western Digital’s brief advisory includes a link to an entry in the National Vulnerability Database for CVE-2018-18472. Examine the CVE attached to this flaw and you’ll notice it was issued in 2018.

Internet

Internet Internet Backups Small Business

New Cring ransomware deployed targeting unpatched Fortinet VPN devices

Security Affairs

APRIL 7, 2021

Attackers are actively exploiting the CVE-2018-13379 flaw in Fortinet VPN to deploy the Cring ransomware to organizations in the industrial sector. “The primary causes of the incident include the use of an outdated and vulnerable firmware version on the Fortigate VPN server (version 6.0.2 Pierluigi Paganini.

VPN

VPN Ransomware Antivirus Firmware

ASUS addressed critical flaws in some router models

Security Affairs

JUNE 19, 2023

ASUS addressed critical vulnerabilities in multiple router models, urging customers to immediately install firmware updates. ASUS is warning customers to update some router models to the latest firmware to address critical vulnerabilities. CVE-2018-1160 is an out-of-bounds write issue that resides in dsi_opensess.c.

Firmware

Firmware VPN Wireless Passwords

Update now! ASUS fixes nine security flaws

Malwarebytes

JUNE 19, 2023

ASUS has released firmware updates for several router models fixing two critical and several other security issues. You will find the latest firmware available for download from the ASUS support page or the appropriate product page. The Asuswrt-Merlin New Gen is an open source firmware alternative for Asus routers.

Firmware

Firmware VPN Risk Cybersecurity

335,923 out of 489,337 Fortinet firewalls vulnerable to CVE-2023-27997

Security Affairs

JULY 3, 2023

Researchers reported that there are 490,000 Fortinet firewalls exposing SSL VPN interfaces on the internet, and roughly 69% of them are still vulnerable to CVE-2023-27997. For this reason, if the customer has SSL-VPN enabled, Fortinet is advising customers to take immediate action to upgrade to the most recent firmware release.

Firewall

Firewall VPN Firmware Internet

A new Zerobot variant spreads by exploiting Apache flaws

Security Affairs

DECEMBER 22, 2022

the malware operators have removed CVE-2018-12613, a phpMyAdmin vulnerability that could allow threat actors to view or execute files. Maintain device health with updates: Make sure devices are up to date with the latest firmware and patches. . “Since the release of Zerobot 1.1, ” reads the analysis published by Microsoft.

IoT

IoT DDOS Malware Firmware

WizCase Report: Vulnerabilities found in WD My Book, NetGear Stora, SeaGate Home, Medion LifeCloud NAS

Security Affairs

OCTOBER 20, 2018

Both the vulnerabilities (dubbed CVE-2018-18472 and CVE-2018-18471) remain unpatched at the time of this publication. CVE-2018-18472 – XXE and Unauthenticated Remote Command Execution in Axentra Hipserv NAS firmware. . The company provides a firmware with a web interface that mainly uses PHP as a serverside language.

Firmware

Firmware IoT VPN Authentication

FBI and CISA are warning of APT actors targeting Fortinet FortiOS servers

Security Affairs

APRIL 2, 2021

The threat actors are actively exploiting the following vulnerabilities in Fortinet FortiOS: CVE-2018-13379 ; CVE-2020-12812 ; CVE-2019-5591. Install updates/patch operating systems, software, and firmware as soon as updates/patches are released. • Regularly back up data, air gap, and password protect backup copies offline. .

Government

Government Passwords Accountability Firmware

Cybersecurity Agencies Reveal the Top Exploited Vulnerabilities of 2021

eSecurity Planet

APRIL 28, 2022

Malicious actors tend to focus on internet-facing systems to gain entry into a network, such as email and virtual private network (VPN) servers, using exploits targeting newly disclosed vulnerabilities. CVE-2018-13379. CVE-2018-0171. Also read: Best Patch Management Software & Tools. Web-Facing Systems at Risk. “U.S.,

Cybersecurity

Cybersecurity Software Firmware Internet

The Biggest Lessons about Vulnerabilities at RSAC 2021

eSecurity Planet

MAY 28, 2021

From BIOS and firmware to UEFI code, VBOS is an attack vector that requires more attention. While the design of a unified extensible firmware interface (UEFI) overcame BIOS limitations, both components critical to computer operation are an increasing target. Current Target: VBOS.

Software

Software DNS Firmware VPN

GUEST ESSAY: The story behind how DataTribe is helping to seed ‘Cybersecurity Valley’ in Maryland

The Last Watchdog

JUNE 4, 2019

and Tenable, which went public in 2018 with a market capitalization of approximately $4 billion. has also attracted a powerful and growing flow of venture capital to the region – about $1 Billion in 2018 and growing at an incredible pace. Two notable examples are Sourcefire, acquired by Cisco for $2.7B

Cybersecurity

Cybersecurity Computers and Electronics Technology Marketing

Threat spotlight: Conti, the ransomware used in the HSE healthcare attack

Malwarebytes

MAY 28, 2021

They changed their tactics in 2018 and started using ransomware in the form of Ryuk. Install updates/patch operating systems, software, and firmware as soon as they are released. Consider installing and using a VPN. hard drive, storage device, the cloud). Use multi-factor authentication where possible.

Healthcare

Healthcare Ransomware Encryption Passwords

Wireless Security: WEP, WPA, WPA2 and WPA3 Explained

eSecurity Planet

MARCH 1, 2023

Announced in 2018 by the Wi-Fi Alliance, WPA3 simplifies the process of configuring devices with little to no display interface — such as IoT devices— by introducing Wi-Fi Easy Connect. Update your router firmware from your router’s manufacturer and install them to ensure your router is up to date and secure.

Wireless

Wireless Encryption Authentication IoT

Barracuda SecureEdge SASE Review 2023

eSecurity Planet

SEPTEMBER 22, 2023

Barracuda once traded publicly on the NYSE under the ticker symbol CUDA, but as of 2018 has been taken private by Thoma Bravo. These one, three, and five year subscriptions provide enhanced support for the hardware, firmware maintenance, security updates, and optional participation in early-release firmware updates.

Firewall

Firewall Marketing Firmware Technology

Chinese national charged for hacking thousands of Sophos firewalls

Security Affairs

DECEMBER 11, 2024

A list of the user IDs permitted to use the firewall for SSL VPN and accounts that were permitted to use a clientless VPN connection. Since 2018, Sophos has faced increasingly aggressive campaigns, including the India-based Sophos subsidiary Cyberoam, where attackers exploited a wall-mounted display for initial access.

Firewall

Firewall Hacking Malware Passwords

Interview With a Crypto Scam Investment Spammer

Krebs on Security

MAY 22, 2023

In September 2018, a user by the name “ ципа ” (phonetically “ Zipper ” in Russian) registered on the Russian hacking forum Lolzteam using the edgard0111012@gmail.com address. Very often, this proxy software is installed surreptitiously, such as through a “Free VPN” service or mobile app.

Scams

Scams DDOS Cryptocurrency Accountability

IoT Secure Development Guide

Pen Test Partners

OCTOBER 9, 2023

There is no concrete method to follow as it will rely on contents of the decomposed design from Step 2, but typical examples might include the following: Intellectual property in the device firmware. Deploy malicious firmware. link] [link] Have a software/firmware update mechanism. Cryptographic keys on the device or pod.

IoT

IoT Firmware Mobile Manufacturing

APT trends report Q3 2021

SecureList

OCTOBER 26, 2021

Lyceum is a threat group operating against high-profile targets in the Middle East since at least 2018. The samples we analyzed mimicked various applications such as private messaging, VPN, and media services. This version was detected and researched several times up to 2018. Middle East.

Malware

Malware Government Surveillance Spyware

Cyber Security Informer

Sophos details five years of China-linked threat actors’ activity targeting network devices worldwide

MyBook Users Urged to Unplug Devices from Internet

Trending Sources

New Cring ransomware deployed targeting unpatched Fortinet VPN devices

ASUS addressed critical flaws in some router models

Update now! ASUS fixes nine security flaws

335,923 out of 489,337 Fortinet firewalls vulnerable to CVE-2023-27997

A new Zerobot variant spreads by exploiting Apache flaws

WizCase Report: Vulnerabilities found in WD My Book, NetGear Stora, SeaGate Home, Medion LifeCloud NAS

FBI and CISA are warning of APT actors targeting Fortinet FortiOS servers

Cybersecurity Agencies Reveal the Top Exploited Vulnerabilities of 2021

The Biggest Lessons about Vulnerabilities at RSAC 2021

GUEST ESSAY: The story behind how DataTribe is helping to seed ‘Cybersecurity Valley’ in Maryland

Threat spotlight: Conti, the ransomware used in the HSE healthcare attack

Top SD-WAN Solutions for Enterprise Security

Wireless Security: WEP, WPA, WPA2 and WPA3 Explained

Barracuda SecureEdge SASE Review 2023

Chinese national charged for hacking thousands of Sophos firewalls

Interview With a Crypto Scam Investment Spammer

IoT Secure Development Guide

APT trends report Q3 2021

Stay Connected