Security Affairs

JULY 25, 2020

The flaws include reflected Cross-Site Scripting (XSS), buffer overflows, bypassing authentication issues, and arbitrary code execution bugs. CVE-2020-15895 :: Link :: DIR-816L :: Reflected XSS vulnerability due to an unescaped value on the device configuration webpage. SecurityAffairs – hacking, D-Link). Pierluigi Paganini.

Firmware 101

Firmware Advertising Authentication Hacking 101

Troy Hunt

NOVEMBER 25, 2020

I also looked at custom firmware and soldering and why, to my mind, that was a path I didn't need to go down at this time. Let's got through the options: Firmware Patching I'll start with the devices themselves and pose a question to you: can you remember the last time you patched the firmware in your light globes? Or vibrator.

IoT 358

IoT Firmware Risk Manufacturing 358

Security Affairs

AUGUST 3, 2019

Dragonblood researchers found two new weaknesses in WPA3 protocol that could be exploited to hack WPA3 protected WiFi passwords. A group of researchers known as Dragonblood (Mathy Vanhoef and Eyal Ronen ) devised new methods to hack WPA3 protected WiFi passwords by exploiting two new vulnerabilities dubbed Dragonblood flaws.

Passwords 93

Passwords Hacking Wireless Authentication 93

Security Affairs

SEPTEMBER 8, 2020

Researchers found multiple vulnerabilities in MoFi Network routers, including critical flaws that can be exploited to remotely hack a device. Probably the most interesting vulnerability is an undocumented backdoor, tracked as CVE-2020-15835, that can be exploited by attackers to gain root access to a router. Pierluigi Paganini.

Firmware 88

Firmware Wireless Authentication Advertising 88

Security Affairs

DECEMBER 12, 2020

The flaw, tracked as CVE-2020-25191, affects driver versions prior to 20.5. “Incorrect permissions are set by default for an API entry-point of a specific service, allowing a non-authenticated user to trigger a function that could reboot the device remotely.” Update the firmware on CompactRIO controllers to v8.5

Firmware 88

Firmware Manufacturing Software Authentication 88

Security Affairs

JULY 1, 2020

Netgear is addressing ten vulnerabilities affecting nearly 80 of its products, including issues discovered at the Pwn2Own hacking competition. Some of the vulnerabilities were discovered during the Pwn2Own Tokyo 2019 hacking contest and reported through the Zero Day Initiative (ZDI). SecurityAffairs – hacking, Netgear).

Authentication 130

Authentication Firmware Hacking Mobile 130

Security Affairs

APRIL 25, 2021

Researchers from Eye Security have found thousands of unpatched ABUS Secvest home alarm systems exposed online despite the vendor has addressed a critical bug (CVE-2020-28973) in January. “The ABUS Secvest wireless alarm system FUAA50000 (v3.01.17) fails to properly authenticate some requests to its built-in HTTPS interface.

Firmware 112

Firmware Passwords Authentication Wireless 112

Security Affairs

DECEMBER 17, 2020

According to a private industry notification alert (PIN), sent by the FBI to private organizations, the Bureau is aware of extortion activities that have been happening since February 2020. Patch operating systems, software, firmware, and endpoints. SecurityAffairs – hacking, FBI). PIN Number 20201210-001. Pierluigi Paganini.

Ransomware 139

Ransomware Backups Firmware Accountability 139

Security Affairs

OCTOBER 26, 2021

The gang has been active since at least 2020, threat actors hit organizations from various industries. Install updates/patch operating systems, software, and firmware as soon as updates/patches are released. Use double authentication when logging into accounts or services. SecurityAffairs – hacking, Ranzy Locker ransomware).

Ransomware 129

Ransomware Firmware Antivirus Accountability 129

Security Affairs

MAY 19, 2020

Palo Alto Networks Unit 42 researchers observed both the Mirai and Hoaxcalls botnets using an exploit for a post-authentication Remote Code Execution vulnerability in legacy Symantec Web Gateways 5.0.2.8. Experts note that the exploit is only effective for authenticated sessions and the affected devices are End of Life (EOL) from 2012.

IoT 107

IoT DDOS Authentication Advertising 107

Security Affairs

AUGUST 5, 2020

ZDNet has obtained a copy of the list with the help of threat intelligence firm KELA and verified confirmed the authenticity of the data. UPDATE: [link] — Bank Security (@Bank_Security) August 5, 2020. SecurityAffairs – hacking, Pulse VPN). reads the advisory. Pierluigi Paganini.

VPN 136

VPN Passwords Banking Advertising 136

Security Affairs

FEBRUARY 3, 2020

This unauthenticated remote command injection vulnerability affects Linear eMerge E3 access control systems running firmware versions 1.00-06 link] #threatintel — Bad Packets Report (@bad_packets) January 10, 2020. SecurityAffairs – NSC Linear eMerge E3 , hacking). 06 and older. ” continues SonicWall.

DDOS 79

DDOS Hacking Internet Internet 79

Security Affairs

JUNE 23, 2020

Unlike other printer management protocols, the IPP protocol supports multiple security features, including authentication and encryption, but evidently organizations don’t use them. This info includes printer names, locations, models, firmware versions, organization names, and even WiFi network names. Pierluigi Paganini.

Internet 98

Internet Internet Firmware Advertising 98

Security Affairs

APRIL 17, 2020

The flaw, tracked as CVE-2020-3161, has been rated as a critical severity and received a CVSS score of 9.8. ” The CVE-2020-3161 vulnerability is caused by the improper validation of HTTP requests, an attacker could exploit the issue by sending a crafted HTTP request to the web server of the vulnerable IP Phones.

Big data 98

Big data Wireless Advertising Firmware 98

Security Affairs

JULY 28, 2020

CGI password logger This installs a fake version of the device admin login page, logging successful authentications and passing them to the legitimate login page. In mid-June 2020, there were approximately 62,000 infected devices worldwide; of these, approximately 7,600 were in the United States and 3,900 were in the United Kingdom.”

Malware 105

Malware Firmware Advertising Manufacturing 105

Security Affairs

MARCH 31, 2022

The three flaws reported by the cybersecurity firm are: An authentication bypass tracked CVE-2019-9564 A stack-based buffer overflow, tracked as CVE-2019-12266 , which could lead to remote control execution. The vendor addressed the unauthenticated access to the content of the SD card with the release of firmware updates on January 29, 2022.

IoT 76

IoT Firmware Marketing Authentication 76

CyberSecurity Insiders

JANUARY 26, 2022

In September 2016, source code of one of the most popular botnets named Mirai was leaked and uploaded to one of the hacking community forums, and later uploaded to GitHub with detailed information on the botnet, its infrastructure, configuration and how to build it. Figure 4 shows the implementation of CVE-2020-10987. Background.

Malware 81

Malware IoT Authentication Antivirus 81

Security Affairs

APRIL 2, 2021

The vulnerabilities affect QNAP TS-231 SOHO NAS devices running firmware version 4.3.6.1446 that reached end of life (EOL). “During the inspection, we fuzzed the web server with customized HTTP requests to different cgi pages, with focus on those that do not require prior authentication. SecurityAffairs – hacking, SOHO).

Firmware 74

Firmware Internet Internet Authentication 74

Security Affairs

JUNE 3, 2021

.” The vulnerabilities impact all embedded and IoT devices that use the Realtek RTL8710C module, they could be exploited only by attackers on the same Wi-Fi network or know the network’s pre-shared key (PSK) used to authenticate wireless clients on local area networks. SecurityAffairs – hacking, Realtek RTL8170C Wi-Fi module).

Wireless 89

Wireless IoT Encryption Firmware 89

Security Affairs

APRIL 23, 2021

Recently QNAP addressed a critical authentication bypass issue, tracked as CVE-2021-28799 , in its Hybrid Backup Sync. Last week, QNAP addressed a SQL Injection flaw in Multimedia Console and the Media Streaming Add-On tracked as CVE-2020-36195. SecurityAffairs – hacking, QNAP NAS). Pierluigi Paganini.

Ransomware 120

Ransomware Backups Media Malware 120

SecureList

JUNE 8, 2022

Routers are forever being hacked and infected, and used to infiltrate local networks. During 2020 and 2021, more than 500 router vulnerabilities were found. The nvd.nist.gov website presents different figures, but they too show a significant increase in the number of router vulnerabilities found in 2020 and 2021. Conclusion.

DDOS 91

DDOS Passwords IoT Firmware 91

Security Affairs

SEPTEMBER 3, 2021

In another incident that occurred in March 2021, a ransomware attack blocked the operations at a US beverage company, while in a November 2020 attack on a US-based international food and agriculture business threat actors requested the payment of a gigantic $40 million ransom. SecurityAffairs – hacking, FBI). Pierluigi Paganini.

Ransomware 98

Ransomware Passwords Backups Firmware 98

Malwarebytes

JULY 20, 2022

The following investigation confirmed that a medical provider in Colorado had just paid a ransom after being hacked by actors using the same Maui ransomware strain. A part of this ransom was recovered in 2020 from a laundering operation in Ukraine. Keep operating systems, applications, and firmware up to date.

Ransomware 93

Ransomware Cryptocurrency Healthcare Firmware 93

Security Affairs

APRIL 2, 2021

The threat actors are actively exploiting the following vulnerabilities in Fortinet FortiOS: CVE-2018-13379 ; CVE-2020-12812 ; CVE-2019-5591. The joint alert also states that attackers scanning also enumerated devices for the CVE-2020-12812 and CVE-2019-5591 flaws. Use multifactor authentication where possible.

Passwords 66

Passwords Government Firmware Accountability 66

Security Affairs

MAY 13, 2021

The Darkside ransomware gang first emerged in the threat landscape in August 2020, in recent months the group was very active and targeted organizations worldwide. Require multi-factor authentication for remote access to OT and IT networks. SecurityAffairs – hacking, DarkSide). 3 ],[ 4 ]” reads the joint alert.

Ransomware 111

Ransomware Healthcare Phishing Risk 111

Security Affairs

APRIL 14, 2022

According to the advisory that was issued with the help of leading cybersecurity firms (Dragos, Mandiant, Microsoft, Palo Alto Networks, and Schneider Electric), nation-state hacking groups were able to hack multiple industrial systems using a new ICS-focused malware toolkit dubbed PIPEDREAM that was discovered in early 2022.

Passwords 116

Passwords Architecture Backups Cyber Attacks 116

Malwarebytes

MAY 17, 2022

2020 saw people rewriting key-fob firmware via Bluetooth. Andin January this year, a teen claimed he had managed to remotely hack into 25 Tesla vehicles. ” The authentication challenge is beamed out into the void. Back in 2021, a zero-click exploit aided a drone in taking over the car’s entertainment system.

Wireless 98

Wireless Firmware Authentication Hacking 98

CyberSecurity Insiders

NOVEMBER 14, 2021

2020 was a high-water mark for online scams and fraud. million fraud complaints in 2020. Here are some steps to take if you’ve been hacked: Update all of your device firmware and software. There may already be a FAQ page concerning hacked or compromised accounts. The Federal Trade Commission (FTC) received 2.1

Scams 92

Scams Banking Accountability Passwords 92

Security Affairs

FEBRUARY 25, 2020

Zyxel has released security patches to address a critical remote code execution vulnerability, tracked as CVE-2020-9054, that affects several NAS devices. “ZyXEL NAS devices achieve authentication by using the weblogin.cgi CGI executable. SecurityAffairs – hacking, Zyxel). ” reads the advisory published by CERT/CC.

Authentication 70

Authentication Advertising Firmware Internet 70

SecureList

JULY 19, 2023

The connection to the remote SMB server sends the user’s Net-NTLMv2 hash in a negotiation message, which the threat actor can use to either: Relay for authentication against other systems that support NTLMv2 authentication. Perform offline cracking to extract the password.

Firmware 87

Firmware Internet Internet Government 87

Security Boulevard

MAY 30, 2022

For example, in October 2020, CISA, FBI, and the Department of Health and Human Services (HHS) issued a joint cybersecurity advisory which described the tactics used by cybercriminals against targets in the healthcare sector to infect systems with ransomware for financial gain.

Healthcare 90

Healthcare IoT Manufacturing Risk 90

eSecurity Planet

NOVEMBER 1, 2021

percent over the same period in 2020, with 313.2 New vulnerabilities are created every day by cybercriminals, leading to many IoT devices being installed with out-of-date firmware and other exploitable vulnerabilities.”. In the coming years, it will expand more than 26 percent a year, the analysts said. IoT market growth.

Wireless 100

Wireless IoT Manufacturing Mobile 100

Thales Cloud Protection & Licensing

FEBRUARY 16, 2021

Mirai, Jeep Hack, etc.) There are three major threat vectors that harm IoT deployments: Devices are hijacked by malicious software; Data collected and processed in IoT ecosystems is tampered with and impacts the confidentiality, integrity and availability of the information; and, Weak user and device authentication.

IoT 96

IoT Manufacturing Energy and Utilities Data collection 96

Security Boulevard

JUNE 28, 2022

IoT has helped mitigate many risks associated with fraud and has helped detect and block hacked accounts. the IoT Cybersecurity Act of 2020 , and NIST SP 800-213 ), they are often shipped and distributed as hackable devices. Build a Zero Trust policy where trust can only be given when it is verified and authenticated.

Financial Services 64

Financial Services IoT Banking Retail 64

Security Boulevard

MARCH 18, 2021

In the DZone Edge Computing and IoT report published in 2020, developers were asked to rank the top 15 most pressing technical challenges of IoT. Source: DZone’s Edge Computing and IoT, 2020 . It’s more than someone hacking into your smart light bulbs and turning on all the lights in your home. It’s basic but it works.

Internet 137

Internet Internet IoT Software 137

Security Affairs

OCTOBER 13, 2020

Here are five significant cybersecurity vulnerabilities with IoT in 2020. Nobody told them that their coffee machine could be hacked into or that their camera could be used to launch a DDoS attack. If such processes lack proper authentication steps, they could work as gateways for bigger problems. The Threat is Definitely Real.

IoT 134

IoT Cybersecurity Manufacturing Internet 134

SecureList

SEPTEMBER 21, 2023

We conducted an analysis of the IoT threat landscape for 2023, as well as the products and services offered on the dark web related to hacking connected devices. Botnet based on Medusa, working since 2020. Another type of service sold on the dark web is IoT hacking. This report contains the key findings of our research.

IoT 88

IoT DDOS Passwords Malware 88