2020, Encryption, Firmware and Information Security

D-Link releases a security firmware update that only fixes 3 out 6 issues in DIR-865L home routers

Security Affairs

JUNE 13, 2020

D-Link has released a firmware update to address three security flaws impacting the DIR-865L home router model, but left some issue unpatched. D-Link has recently released a firmware update to address three out of six security flaws impacting the DIR-865L wireless home router. Pierluigi Paganini.

Firmware

Firmware Wireless Advertising Risk

Microsoft found auth bypass, system hijack flaws in Netgear routers

Security Affairs

JULY 1, 2021

Microsoft experts have disclosed a series of vulnerabilities in the firmware of Netgear routers which could lead to data leaks and full system takeover. The traffic was TLS-encrypted, so the researchers focused on the router and investigate the presence of security weaknesses that can be exploited by threat actors.

Firmware

Firmware Authentication Encryption Passwords

New Ttint IoT botnet exploits two zero-days in Tenda routers

Security Affairs

OCTOBER 5, 2020

The botnet uses the WSS (WebSocket over TLS) protocol for C2 communication to circumvent the typical Mirai traffic detection and provide secure encrypted communication for command and control. “Two zero days, 12 remote access functions for the router, encrypted traffic protocol, and infrastructure IP that that moves around. .”

IoT

IoT Firmware DNS Advertising

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

QNAP addresses 2 critical flaws that can allow hackers to take over NASs

Security Affairs

OCTOBER 8, 2020

According to a security advisory published by the company, both flaws, tracked as CVE-2020-2506 and CVE-2020-2507 , are improper access control vulnerabilities. Helpdesk is a built-in app that allows owners of QNAP NAS to directly submit help requests to the vendor from their NAS, to do this, the app has specific permission.

Encryption

Encryption Firmware Advertising Ransomware

Flaws in Realtek RTL8170C Wi-Fi module allow hijacking wireless communications

Security Affairs

JUNE 3, 2021

Researchers discovered two stack-based buffer overflow vulnerabilities, tracked as CVE-2020-27301 and CVE-2020-27302, in the module’s WPA2 handshake mechanism. In the video PoC published by the researchers, on the right-hand-side window as “Sending malicious encrypted GTK”. ” continues the report. Pierluigi Paganini.

Wireless

Wireless IoT Encryption Firmware

QSnatch malware infected over 62,000 QNAP NAS Devices

Security Affairs

JULY 28, 2020

These are encrypted with the actor’s public key and sent to their infrastructure over HTTPS. In November 2019, security experts first spotted the QSnatch malware that at the time infected thousands of QNAP NAS devices worldwide. If sources are in question, run a full factory reset on the device prior to completing the firmware upgrade.

Malware

Malware Firmware Advertising Manufacturing

FBI warns of ransomware attacks targeting the food and agriculture sector

Security Affairs

SEPTEMBER 3, 2021

“Cyber criminal threat actors exploit network vulnerabilities to exfiltrate data and encrypt systems in a sector that is increasingly reliant on smart technologies, industrial control systems, and internet-based automation systems. Install updates/patch operating systems, software, and firmware as soon as they are released.

Ransomware

Ransomware Passwords Backups Firmware

Security Affairs newsletter Round 268

Security Affairs

JUNE 14, 2020

Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

Firmware

Firmware Advertising Ransomware Hacking

FBI and CISA are warning of APT actors targeting Fortinet FortiOS servers

Security Affairs

APRIL 2, 2021

The threat actors are actively exploiting the following vulnerabilities in Fortinet FortiOS: CVE-2018-13379 ; CVE-2020-12812 ; CVE-2019-5591. The joint alert also states that attackers scanning also enumerated devices for the CVE-2020-12812 and CVE-2019-5591 flaws. hard drive, storage device, the cloud).

Passwords

Passwords Government Firmware Accountability

New Cring ransomware deployed targeting unpatched Fortinet VPN devices

Security Affairs

APRIL 7, 2021

This ransomware encrypts data from victims with AES-256 + RSA-8192 and then demands a ~ 2 BTC ransom to get the files back. At least in one case, an attack of the ransomware resulted in a temporary shutdown of the industrial process due to servers used to control the industrial process becoming encrypted.” Pierluigi Paganini.

VPN

VPN Ransomware Antivirus Firmware

New Qlocker ransomware infected hundreds of QNAP NAS devices in a few days

Security Affairs

APRIL 23, 2021

(QNAP), a leading computing, networking and storage solution innovator, today issued a statement in response to recent user reports and media coverage that two types of ransomware (Qlocker and eCh0raix) are targeting QNAP NAS and encrypting users’ data for ransom. ” read the advisory published by the vendor.

Ransomware

Ransomware Backups Media Malware

Threat spotlight: Conti, the ransomware used in the HSE healthcare attack

Malwarebytes

MAY 28, 2021

The files are then held for ransom and the victim is threatened by data loss, because of the encryption, and leaking of the exfiltrated data. Files are encrypted with a combination of AES-256 and RSA-4096 via the Microsoft CryptoAPI , as per CrowdStrike. Earlier versions appended the.CONTI extension to encrypted files.

Healthcare

Healthcare Ransomware Encryption Passwords

US CISA and FBI publish joint alert on DarkSide ransomware

Security Affairs

MAY 13, 2021

The Darkside ransomware gang first emerged in the threat landscape in August 2020, in recent months the group was very active and targeted organizations worldwide. Update software , including operating systems, applications, and firmware on IT network assets, in a timely manner. 3 ],[ 4 ]” reads the joint alert.

Ransomware

Ransomware Healthcare Phishing Risk

Three more ransomware attacks hit Water and Wastewater systems in 2021

Security Affairs

OCTOBER 15, 2021

In all the attacks the ransomware encrypting files on the infected systems and in one of the security incidents threat actors compromised a system used to control the SCADA industrial equipment. RDP accesses); Exploitation of vulnerabilities affecting control systems running vulnerable firmware versions.

Ransomware

Ransomware Cyber threats Firmware Backups

DRAGONBLOOD flaws allow hacking WPA3 protected WiFi passwords

Security Affairs

AUGUST 3, 2019

The WPA Wireless security standard was designed to authenticate wireless devices using the Advanced Encryption Standard (AES) protocol and to establish secure connections that hackers cannot spy on. The Enterprise mode implements 192-bit encryption for networks that require extra security.

Passwords

Passwords Hacking Wireless Authentication

The Biggest Lessons about Vulnerabilities at RSAC 2021

eSecurity Planet

MAY 28, 2021

Ransomware: Encryption, Exfiltration, and Extortion. Ransomware perpetrators of the past presented a problem of availability through encryption. Nickels suggests organizations follow this guidance: Also Read: How Zero Trust Security Can Protect Against Ransomware. Detect Focus on encryption Assume exfiltration.

Software

Software Firmware DNS VPN

IoT Cybersecurity: 5 Major Vulnerabilities and How to Tackle Them

Security Affairs

OCTOBER 13, 2020

Here are five significant cybersecurity vulnerabilities with IoT in 2020. A hacker managed to identify a weak spot in a security camera model. As an example, we could use communications between systems that are not properly encrypted. Improper encryption. The Threat is Definitely Real. Vicious insider.

IoT

IoT Cybersecurity Manufacturing Internet

ICS and OT threat predictions for 2024

SecureList

JANUARY 31, 2024

In 2023, ransomware attacks consolidated their hold on the top of the ranking of information security threats to industrial enterprises. Above all, the risk concerns river, sea, truck, and emergency transport — information security in such vehicles is often inferior to that in passenger cars.

Ransomware

Ransomware Energy and Utilities Marketing Backups

Cyber Security Roundup for June 2021

Security Boulevard

JUNE 1, 2021

roundup of UK focused Cyber and Information Security News, Blog Posts, Reports and general Threat Intelligence from the previous calendar month, May 2021. The UK National Cyber Security Centre (NCSC) published its Smart Cities (connected places) guidance for UK local authorities. UK Smarties Cities Cybersecurity Warning.

Ransomware

Ransomware Passwords Scams Cyber Attacks

McAfee Enterprise ATR Uncovers Vulnerabilities in Globally Used B. Braun Infusion Pump

McAfee

AUGUST 24, 2021

From the 1960’s to 2000 infusion pumps were mostly electromechanical devices with some embedded electronics, but the turn of the century delivered “smarter” devices with better safety mechanisms and the possibility to program them, which slowly opened the door to information security challenges. Figure 1: B.

Computers and Electronics

Computers and Electronics Authentication Software Risk

The Hacker Mind Podcast: DEF CON Villages

ForAllSecure

AUGUST 2, 2022

Anyone who has anyone in the information security community is usually melting under the hot Nevada sun. Gosh, there must be 20 or more villages at DEFCON if you want to learn radio if you want to learn tampering with seals if you want to learn encryption, if you want to learn you name it. is or what it controls. For example.

Hacking

Hacking Computers and Electronics InfoSec Software

Cyber Security Informer

D-Link releases a security firmware update that only fixes 3 out 6 issues in DIR-865L home routers

Microsoft found auth bypass, system hijack flaws in Netgear routers

Webinars

Trending Sources

New Ttint IoT botnet exploits two zero-days in Tenda routers

Webinars

QNAP addresses 2 critical flaws that can allow hackers to take over NASs

Flaws in Realtek RTL8170C Wi-Fi module allow hijacking wireless communications

QSnatch malware infected over 62,000 QNAP NAS Devices

FBI warns of ransomware attacks targeting the food and agriculture sector

Security Affairs newsletter Round 268

FBI and CISA are warning of APT actors targeting Fortinet FortiOS servers

New Cring ransomware deployed targeting unpatched Fortinet VPN devices

New Qlocker ransomware infected hundreds of QNAP NAS devices in a few days

Threat spotlight: Conti, the ransomware used in the HSE healthcare attack

US CISA and FBI publish joint alert on DarkSide ransomware

Three more ransomware attacks hit Water and Wastewater systems in 2021

DRAGONBLOOD flaws allow hacking WPA3 protected WiFi passwords

The Biggest Lessons about Vulnerabilities at RSAC 2021

IoT Cybersecurity: 5 Major Vulnerabilities and How to Tackle Them

ICS and OT threat predictions for 2024

Cyber Security Roundup for June 2021

McAfee Enterprise ATR Uncovers Vulnerabilities in Globally Used B. Braun Infusion Pump

The Hacker Mind Podcast: DEF CON Villages

Stay Connected