Security Affairs

JANUARY 14, 2024

The vulnerability is an improper error message handling in Zyxel ZyWALL/USG series firmware versions 4.60 through 4.73, VPN series firmware versions 4.60 through 5.35, USG FLEX series firmware versions 4.60 through 5.35, and ATP series firmware versions 4.60 through 5.35. reported the SektorCERT. “An

Firewall 103

Firewall Firmware Cyber Attacks VPN 103

Security Affairs

SEPTEMBER 8, 2020

Probably the most interesting vulnerability is an undocumented backdoor, tracked as CVE-2020-15835, that can be exploited by attackers to gain root access to a router. “The authentication function contains undocumented code which provides the ability to authenticate as root without having to know the actual root password.

Firmware 88

Firmware Wireless Authentication Advertising 88

Security Affairs

DECEMBER 12, 2020

Cybersecurity and Infrastructure Security Agency (CISA) published a security advisory to warn organizations about the flaw. The flaw, tracked as CVE-2020-25191, affects driver versions prior to 20.5. ” reads the security advisory published by CISA. Update the firmware on CompactRIO controllers to v8.5

Firmware 87

Firmware Manufacturing Software Authentication 87

Security Affairs

APRIL 25, 2021

Researchers from Eye Security have found thousands of unpatched ABUS Secvest home alarm systems exposed online despite the vendor has addressed a critical bug (CVE-2020-28973) in January. “The ABUS Secvest wireless alarm system FUAA50000 (v3.01.17) fails to properly authenticate some requests to its built-in HTTPS interface.

Firmware 112

Firmware Passwords Authentication Wireless 112

Security Affairs

DECEMBER 17, 2020

According to a private industry notification alert (PIN), sent by the FBI to private organizations, the Bureau is aware of extortion activities that have been happening since February 2020. Patch operating systems, software, firmware, and endpoints. PIN Number 20201210-001.

Ransomware 139

Ransomware Backups Firmware Accountability 139

Security Affairs

JULY 1, 2020

Four of flaws have been rated high severity , they can be exploited by an unauthenticated attacker with network access to the vulnerable Netgear device to execute arbitrary code with admin or root privileges, and to bypass authentication. ZDI reported the flaws to the vendor in November 2019, January and February 2020.

Authentication 129

Authentication Firmware Hacking Mobile 129

Security Affairs

OCTOBER 26, 2021

The gang has been active since at least 2020, threat actors hit organizations from various industries. Install updates/patch operating systems, software, and firmware as soon as updates/patches are released. Use double authentication when logging into accounts or services. Disable hyperlinks in received emails.

Ransomware 129

Ransomware Firmware Antivirus Accountability 129

Security Affairs

JANUARY 22, 2021

Realmode Labs reported the flaws to Amazon on October 17 and the company released security updates to address them on December 10, 2020. The experts discovered that Amazon did not verify the authenticity of the email sender, this means that attackers can spoof an email address that is present in the list of approved addresses.

Hacking 136

Hacking Authentication Firmware Phishing 136

Security Affairs

MARCH 21, 2020

A new variant of the infamous Mirai malware, tracked as Mukashi, targets Zyxel network-attached storage (NAS) devices exploiting recently patched CVE-2020-9054 issue. According to Palo Alto researchers, threat actors exploited the recently patched CVE-2020-9054 vulnerability in Zyxel NAS. The vendor advisory is also available.

DDOS 103

DDOS Authentication Advertising Firmware 103

Security Affairs

JULY 28, 2020

CGI password logger This installs a fake version of the device admin login page, logging successful authentications and passing them to the legitimate login page. In mid-June 2020, there were approximately 62,000 infected devices worldwide; of these, approximately 7,600 were in the United States and 3,900 were in the United Kingdom.”

Malware 105

Malware Firmware Advertising Manufacturing 105

Security Affairs

SEPTEMBER 3, 2021

In another incident that occurred in March 2021, a ransomware attack blocked the operations at a US beverage company, while in a November 2020 attack on a US-based international food and agriculture business threat actors requested the payment of a gigantic $40 million ransom. Focus on cyber security awareness and training.

Ransomware 97

Ransomware Passwords Backups Firmware 97

Security Affairs

APRIL 2, 2021

Security researchers at SAM Seamless Network discovered a couple of critical unpatched flawsin QNAP small office/home office (SOHO) network-attached storage (NAS) devices that could allow remote attackers to execute arbitrary code on vulnerable devices. October 23, 2020 – Sent another e-mail to QNAP security team.

Firmware 73

Firmware Internet Internet Authentication 73

Security Affairs

MARCH 31, 2022

Bitdefender researchers discovered three security vulnerabilities in the popular Wyze Cam devices that can be exploited by threat actors to execute arbitrary code and access camera feeds. The vendor addressed the unauthenticated access to the content of the SD card with the release of firmware updates on January 29, 2022.

IoT 74

IoT Firmware Marketing Authentication 74

Security Affairs

JUNE 3, 2021

.” The vulnerabilities impact all embedded and IoT devices that use the Realtek RTL8710C module, they could be exploited only by attackers on the same Wi-Fi network or know the network’s pre-shared key (PSK) used to authenticate wireless clients on local area networks. The latest version of ambz2 SDK (7.1d) addresses the issues.

Wireless 89

Wireless IoT Encryption Firmware 89

Security Affairs

JUNE 14, 2020

Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

Firmware 68

Firmware Advertising Ransomware Hacking 68

Security Affairs

APRIL 2, 2021

The threat actors are actively exploiting the following vulnerabilities in Fortinet FortiOS: CVE-2018-13379 ; CVE-2020-12812 ; CVE-2019-5591. The joint alert also states that attackers scanning also enumerated devices for the CVE-2020-12812 and CVE-2019-5591 flaws. Use multifactor authentication where possible.

Passwords 66

Passwords Government Firmware Accountability 66

Malwarebytes

SEPTEMBER 3, 2021

As we pointed out in our State of Malware report, published earlier this year, Malwarebytes recorded an eye-watering 607% increase in malware detections in the agriculture sector in 2020. Malwarebytes recorded a 607% increase in agriculture sector attacks in 2020. Use multi-factor authentication with strong pass phrases where possible.

Ransomware 138

Ransomware Manufacturing Passwords Internet 138

Security Affairs

APRIL 23, 2021

Recently QNAP addressed a critical authentication bypass issue, tracked as CVE-2021-28799 , in its Hybrid Backup Sync. Last week, QNAP addressed a SQL Injection flaw in Multimedia Console and the Media Streaming Add-On tracked as CVE-2020-36195. If anyone's dealing with the QLocker QNAP NAS ransomware, feel free to DM me.

Ransomware 119

Ransomware Backups Media Malware 119

Security Affairs

MAY 13, 2021

The Darkside ransomware gang first emerged in the threat landscape in August 2020, in recent months the group was very active and targeted organizations worldwide. Require multi-factor authentication for remote access to OT and IT networks. 3 ],[ 4 ]” reads the joint alert.

Ransomware 110

Ransomware Healthcare Phishing Risk 110

Security Affairs

AUGUST 3, 2019

The WPA Wireless security standard was designed to authenticate wireless devices using the Advanced Encryption Standard (AES) protocol and to establish secure connections that hackers cannot spy on. The Enterprise mode implements 192-bit encryption for networks that require extra security.

Passwords 92

Passwords Hacking Wireless Authentication 92

Security Affairs

APRIL 14, 2022

sys “) by triggering the CVE-2020-15368 flaw to execute malicious code in the Windows kernel. Enforce multifactor authentication for all remote access to ICS networks and devices whenever possible. Threat actors can also leverage a tool to install and exploit a known-vulnerable ASRock-signed motherboard driver (“ AsrDrv103.

Passwords 115

Passwords Architecture Backups Cyber Attacks 115

eSecurity Planet

MAY 28, 2021

Also Read: Remote Work Security | Top Priorities & Projects for 2021. The truth is that solutions like single sign-on (SSO) and multi-factor authentication (MFA) can spell disaster if initial access is all a malicious actor needs to traverse the network’s resources. Current Target: VBOS.

Software 99

Software Firmware DNS VPN 99

McAfee

AUGUST 24, 2021

CVE-2021-33885 – Insufficient Verification of Data Authenticity (CVSS 9.7). CVE-2021-33882 – Missing Authentication for Critical Function (CVSS 8.2). CVE-2021-33883 – Cleartext Transmission of Sensitive Information (CVSS 7.1). What Security Research has Already Been Performed? Braun on January 11, 2021.

Computers and Electronics 145

Computers and Electronics Authentication Software Risk 145

Malwarebytes

MAY 28, 2021

Two years later, the group moved to using Conti, in May 2020. Implement a recovery plan to maintain and retain multiple copies of sensitive or proprietary data and servers in a physically separate, segmented, secure location (i.e., Install updates/patch operating systems, software, and firmware as soon as they are released.

Healthcare 103

Healthcare Ransomware Encryption Passwords 103

Security Affairs

OCTOBER 13, 2020

Here are five significant cybersecurity vulnerabilities with IoT in 2020. A hacker managed to identify a weak spot in a security camera model. If such processes lack proper authentication steps, they could work as gateways for bigger problems. The Threat is Definitely Real. Shadow IoT Devices.

IoT 134

IoT Cybersecurity Manufacturing Internet 134