SecureList

JUNE 8, 2022

During 2020 and 2021, more than 500 router vulnerabilities were found. The nvd.nist.gov website presents different figures, but they too show a significant increase in the number of router vulnerabilities found in 2020 and 2021. search results for “default password” in June 2021. Router-targeting malware. Conclusion.

DDOS 94

DDOS Passwords IoT Firmware 94

Malwarebytes

SEPTEMBER 3, 2021

As we pointed out in our State of Malware report, published earlier this year, Malwarebytes recorded an eye-watering 607% increase in malware detections in the agriculture sector in 2020. Malwarebytes recorded a 607% increase in agriculture sector attacks in 2020. Use multi-factor authentication with strong pass phrases where possible.

Ransomware 138

Ransomware Manufacturing Passwords Internet 138

Malwarebytes

SEPTEMBER 7, 2022

Malwarebytes has been tracking the group since December 2020. Authentication. Require all accounts with password logins to meet the required standards for developing and managing password policies: Require multifactor authentication wherever you can—particularly for webmail, VPNs, and critical systems.

Education 86

Education Ransomware Backups Passwords 86

Security Affairs

APRIL 23, 2021

The malware moves all files stored on the device to password-protected 7zip archives and demand the payment of a $550 ransom. The vendor recommends the use of strong passwords and to modify the default network port 8080 for accessing the NAS operating interface. “QNAP® Systems, Inc.

Ransomware 124

Ransomware Backups Media Malware 124

Security Affairs

JULY 28, 2020

CGI password logger This installs a fake version of the device admin login page, logging successful authentications and passing them to the legitimate login page. In mid-June 2020, there were approximately 62,000 infected devices worldwide; of these, approximately 7,600 were in the United States and 3,900 were in the United Kingdom.”

Malware 108

Malware Firmware Advertising Manufacturing 108

SecureList

MAY 23, 2022

In early 2020, we notified the Rockwell Automation Product Security Incident Response Team ( RA PSIRT ) of several vulnerabilities we had identified in the ISaGRAF Runtime execution environment. A remote attacker could easily implement a password brute force attack in ISaGRAF Runtime.

Architecture 80

Architecture Authentication Passwords Encryption 80

Security Affairs

APRIL 2, 2021

The threat actors are actively exploiting the following vulnerabilities in Fortinet FortiOS: CVE-2018-13379 ; CVE-2020-12812 ; CVE-2019-5591. The joint alert also states that attackers scanning also enumerated devices for the CVE-2020-12812 and CVE-2019-5591 flaws. Use multifactor authentication where possible.

Passwords 68

Passwords Government Firmware Accountability 68

CyberSecurity Insiders

NOVEMBER 14, 2021

2020 was a high-water mark for online scams and fraud. million fraud complaints in 2020. They contain a wealth of information like credit card numbers, online passwords, photos, intellectual property, work documents and more. If the data you handed over was an account credential, change the password immediately.

Scams 92

Scams Banking Accountability Passwords 92

Security Affairs

APRIL 14, 2022

sys “) by triggering the CVE-2020-15368 flaw to execute malicious code in the Windows kernel. Enforce multifactor authentication for all remote access to ICS networks and devices whenever possible. Threat actors can also leverage a tool to install and exploit a known-vulnerable ASRock-signed motherboard driver (“ AsrDrv103.

Passwords 119

Passwords Architecture Backups Cyber Attacks 119

Security Boulevard

MAY 30, 2022

Many legacy IoT devices have poor security settings, and some healthcare departments let these vulnerabilities slip by not segmenting network access or not changing default passwords, which are common among many IoT devices, and are very easy to find. Change all default passwords. Maintain a regular patch management process.

Healthcare 90

Healthcare IoT Manufacturing Risk 90

SiteLock

AUGUST 27, 2021

Cybercriminals were able to exploit the default password on thousands of these innocuous devices to carry out this nefarious attack. When not secured properly on their own Wi-Fi channel, IoT devices can be more than an inconvenience, they can be seen as a critical security risk due to the poor security protocols like fixed default passwords.

IoT 98

IoT Spyware VPN Passwords 98

eSecurity Planet

NOVEMBER 1, 2021

percent over the same period in 2020, with 313.2 New vulnerabilities are created every day by cybercriminals, leading to many IoT devices being installed with out-of-date firmware and other exploitable vulnerabilities.”. In the coming years, it will expand more than 26 percent a year, the analysts said. IoT market growth. he said.

Wireless 109

Wireless IoT Manufacturing Mobile 109

SecureList

JULY 19, 2023

The connection to the remote SMB server sends the user’s Net-NTLMv2 hash in a negotiation message, which the threat actor can use to either: Relay for authentication against other systems that support NTLMv2 authentication. Perform offline cracking to extract the password.

Firmware 88

Firmware Internet Internet Government 88

Security Affairs

FEBRUARY 3, 2020

“ Attackers can easily obtain default passwords and identify internet-connected target systems. Passwords can be found in p roduct documentation and compiled lists available on the Internet.” link] #threatintel — Bad Packets Report (@bad_packets) January 10, 2020. 06 and older. ” continues SonicWall.

DDOS 83

DDOS Hacking Internet Internet 83

Security Boulevard

MARCH 18, 2021

In the DZone Edge Computing and IoT report published in 2020, developers were asked to rank the top 15 most pressing technical challenges of IoT. Source: DZone’s Edge Computing and IoT, 2020 . Staying current with firmware patches and updates is also key to enabling robust security. . The Technical Challenge of IoT Security.

Internet 137

Internet Internet IoT Software 137

SecureList

SEPTEMBER 21, 2023

Attack vectors There are two main IoT infection routes: brute-forcing weak passwords and exploiting vulnerabilities in network services. A successful password cracking enables hackers to execute arbitrary commands on a device and inject malware. Unfortunately, users tend to leave these passwords unchanged. Our advantages: 1.

IoT 91

IoT DDOS Passwords Malware 91

SecureWorld News

DECEMBER 18, 2020

The FBI, CISA, and the Multi-State Information Sharing and Analysis Center (MS-ISAC) recently revealed that the number of ransomware incidents against K-12 districts increased dramatically at the beginning of fall 2020 classes. Regularly change passwords to network systems and accounts and avoid reusing passwords for different accounts.

Ransomware 66

Ransomware Education Backups Malware 66

Security Affairs

OCTOBER 13, 2020

Here are five significant cybersecurity vulnerabilities with IoT in 2020. Simple or reused passwords are still a problem. While the cybersecurity industry has presented options for every netizen, the recommendation to use original and complex passwords continues to be disregarded. The Threat is Definitely Real. Poor credentials.

IoT 134

IoT Cybersecurity Manufacturing Internet 134

Malwarebytes

MAY 6, 2022

REvil (aka Sodinokibi) first appeared in May 2020 and has been responsible for numerous high-profile ransomware attacks, including arguably the biggest ransomware attack of all time—a supply-chain attack on Kaseya VSA in July 2021 that is thought to have affected over 1,000 businesses. An old enemy returns. Ransomware mitigations.

Ransomware 82

Ransomware Encryption Accountability Technology 82

Malwarebytes

MAY 28, 2021

Two years later, the group moved to using Conti, in May 2020. Below is a list of recommended mitigations from the FBI, which it issued along with an alert on Conti ransomware late last week: Regularly back up data, air gap, and password protect backup copies offline. Use multi-factor authentication where possible.

Healthcare 106

Healthcare Ransomware Encryption Passwords 106

eSecurity Planet

FEBRUARY 15, 2022

The agencies offered some sound cybersecurity advice for BlackByte that applies pretty generally: Conduct regular backups and store them as air-gapped, password-protected copies offline. Update and patch operating systems, software, and firmware as soon as updates and patches are released. 7 SP1, 8, 8.1)

Ransomware 128

Ransomware Encryption Backups Accountability 128

SecureList

SEPTEMBER 29, 2022

In 2020, CVE-2020-28212 , a vulnerability affecting this software, was reported, which could be exploited by a remote unauthorized attacker to gain control of a PLC with the privileges of an operator already authenticated on the controller. The procedure acts as authentication. Reservation procedure. Device reservation.

Firmware 86

Firmware Passwords Authentication Engineering 86

Malwarebytes

APRIL 5, 2023

By January 2023, education had claimed over 80 percent of all global malware incidents —a staggering lead that has held since 2020. In fact, 57 percent of all ransomware incidents disclosed to the FBI involved K–12 districts at the start of the 2020/2021 school year, compared to just 28 percent the year prior.

Education 62

Education Ransomware Cybersecurity Risk 62

Spinone

MARCH 17, 2018

In 2020, this number is expected to grow to a staggering 20.8 In many cases vulnerabilities may also not be patched immediately as the company does not want to disrupt its users by forcing a firmware upgrade. While most computer software now forces users to create a strong password, the same is not true of all smart devices.

Internet 40

Internet Internet Risk Computers and Electronics 40

Security Affairs

JULY 1, 2021

Microsoft experts have disclosed a series of vulnerabilities in the firmware of Netgear routers which could lead to data leaks and full system takeover. “In our research, we unpacked the router firmware and found three vulnerabilities that can be reliably exploited.” html) and the firmware image itself (.chk

Firmware 129

Firmware Authentication Encryption Passwords 129

Malwarebytes

AUGUST 18, 2021

At the WWDC 2020, Apple made a big deal of several new macOS and iOS features that were, in fact, big deals. The major new security features that would debut in macOS 11 were: Pointer Authentication Codes (PAC) , hardware-enforced Call Flow Integrity (CFI), implemented by Apple’s homegrown 64 bit ARM processor, the M1.

Firmware 143

Firmware Architecture Risk Engineering 143

Krebs on Security

MARCH 30, 2021

A security professional at Ubiquiti who helped the company respond to the two-month breach beginning in December 2020 contacted KrebsOnSecurity after raising his concerns with both Ubiquiti’s whistleblower hotline and with European data protection authorities. ” Ubiquiti has not responded to repeated requests for comment.

Accountability 364

Accountability IoT Passwords Firmware 364

Thales Cloud Protection & Licensing

APRIL 20, 2021

Organizations suffered an unprecedented number of cyberattacks in 2020. The FBI’s Cyber Division received as many as 4,000 complaints of digital attacks a day in H1 2020, reported by The Hill. Even fewer (19%) told Proofpoint that they had updated their Wi-Fi router’s firmware. Encryption.

Mobile 71

Mobile Architecture Data breaches Authentication 71

McAfee

AUGUST 24, 2021

CVE-2021-33885 – Insufficient Verification of Data Authenticity (CVSS 9.7). CVE-2021-33882 – Missing Authentication for Critical Function (CVSS 8.2). It is estimated that there are over 200 million IV infusions administered globally each year, and 2020 sales of IV pumps in the US were at $13.5 Figure 1: B.

Computers and Electronics 145

Computers and Electronics Authentication Software Risk 145

SecureList

NOVEMBER 18, 2022

In July, we reported a rootkit that we found in modified Unified Extensible Firmware Interface (UEFI) firmware, the code that loads and initiates the boot process when the computer is turned on. In late August 2020, we published an overview of DeathStalker and its activities, including the Janicab, Evilnum and PowerSing campaigns.

Malware 104

Malware Computers and Electronics Adware Cryptocurrency 104

eSecurity Planet

FEBRUARY 16, 2021

Organizations can help prevent their computers from becoming part of a botnet by installing anti-malware software, using firewalls , keeping software up-to-date, and forcing users to use strong passwords. Always change the default passwords for any IoT devices you install before extended use. Examples of Botnet Malware Attacks.

Malware 105

Malware Adware Spyware Antivirus 105

SecureWorld News

OCTOBER 29, 2020

October 29, 2020. Both frameworks are very robust and are highly effective dual-purpose tools, allowing actors to dump clear text passwords or hash values from memory with the use of Mimikatz. Patch operating systems, software, and firmware as soon as manufacturers release updates. Use multi-factor authentication where possible.

Ransomware 66

Ransomware Healthcare Backups Cybercrime 66

Malwarebytes

JUNE 3, 2022

Conti ransomware and the group that distributes it has been a dangerous, noisy presence in the ransomware ecosystem since 2020. Implement regular backups of all data to be stored as air-gapped, password-protected copies offline. Install updates/patch operating systems, software, and firmware as soon as updates/patches are released.

Ransomware 101

Ransomware Accountability Technology Firmware 101

Malwarebytes

JULY 13, 2022

Ransoms were 36 percent higher in 2021 than in 2020 at an average of $6.1 In 2020, gangs such as Conti, REvil, and Maze published stolen data even if the ransom was paid. Install updates/patches to operating systems, software and firmware as soon as they are released.

Ransomware 108

Ransomware Manufacturing Government Computers and Electronics 108

Privacy and Cybersecurity Law

NOVEMBER 6, 2018

The new bill, SB-327, was introduced last year, passed the Senate in late August, was signed by the governor in September, and will go into effect January 1, 2020. Below is a summary of California’s new law and some takeaways for IoT device manufacturers as they move toward January 1, 2020 compliance. Core Security Obligation.

IoT 45

IoT Cybersecurity Manufacturing Technology 45

Privacy and Cybersecurity Law

NOVEMBER 5, 2018

The new bill, SB-327, was introduced last year, passed the Senate in late August, was signed by the governor in September, and will go into effect January 1, 2020. Below is a summary of California’s new law and some takeaways for IoT device manufacturers as they move toward January 1, 2020 compliance. Core Security Obligation.

IoT 45

IoT Cybersecurity Manufacturing Technology 45

eSecurity Planet

MARCH 23, 2022

Chinese APT attackers developed a Unified Extensible Firmware Interface (UEFI) malware that hijacks the booting sequence and is saved in the SPI flash memory of the motherboard beyond where most tools might remove it. Use strong passwords. Implement multi-factor authentication (MFA). Strong Access Control for Users.

Firewall 109

Firewall Malware Phishing Software 109