Security Affairs

JUNE 13, 2020

D-Link has released a firmware update to address three security flaws impacting the DIR-865L home router model, but left some issue unpatched. D-Link has recently released a firmware update to address three out of six security flaws impacting the DIR-865L wireless home router. D-Link’s DIR-865L is no longer supported for U.S.

Firmware 81

Firmware Wireless Advertising Risk 81

Troy Hunt

OCTOBER 2, 2020

22% of breaches begin with phishing (DBIR 2020). This week there's all the above and, on a more personal note, my relationship with Charlotte. References My shoes are connected! Sponsored by: Tines. Submit suspicious emails and attachments to Phish.ly for free immediate analysis!

Firmware 301

Firmware Phishing Accountability 301

CSO Magazine

JANUARY 19, 2022

First announced in 2020, the Pluton is a security processor that Microsoft developed in partnership with AMD and Qualcomm to provide what they called “chip to cloud” security. While this year’s Consumer Electronics Show was impacted by COVID, it didn’t stop Lenovo from announcing the first Microsoft Pluton-powered Windows 11 PCs.

Firmware 112

Firmware 112

Security Affairs

JANUARY 1, 2021

Zyxel addressed a critical flaw in its firmware, tracked as CVE-2020-29583 , related to the presence of a hardcoded undocumented secret account. The Taiwanese vendor Zyxel has addressed a critical vulnerability in its firmware related to the presence of a hardcoded undocumented secret account. “Firmware version 4.60

Firewall 140

Firewall VPN Firmware Passwords 140

Security Affairs

MARCH 14, 2021

Netgear has released security and firmware updates for its JGS516PE Ethernet switch to address 15 vulnerabilities, including a critica remote code execution issue. The most severe flaw is a critical RCE tracked as CVE-2020-26919 and rated with a CVSS v3 score of 9.8, ” reads the advisory published by NCC Group.”

Firmware 135

Firmware Authentication Hacking Software 135

SiteLock

AUGUST 27, 2021

According to SiteLock researchers and cybersecurity experts, the threat landscape will only continue to grow in 2020 and will likely bring even more new challenges with it. We’ve analyzed the current state of the industry and packaged up our top five cybersecurity predictions for 2020.

Cybersecurity 98

Cybersecurity Phishing Data breaches IoT 98

Security Affairs

NOVEMBER 11, 2021

Below is the list of exploits used by the bot: Vulnerability Affected devices CVE-2020-8515 DrayTek Vigor2960 1.3.1_Beta, Vigor3900 1.4.4_Beta, and Vigor300B 1.3.3_Beta, 1.4.2.1_Beta, and 1.4.4_Beta devices CVE-2015-2051 D-Link DIR-645 Wired/Wireless Router Rev. Ax with firmware 1.04b12 and earlier CVE-2016-1555 Netgear WN604 before 3.3.3

IoT 127

IoT Firmware Malware Wireless 127

Krebs on Security

JULY 2, 2021

That update effectively nullified their chances at competing in Pwn2Own, which requires exploits to work against the latest firmware or software supported by the targeted device. A statement published on its support site March 12, 2021 says the company will no longer provide further security updates to the MyCloud OS 3 firmware.

Firmware 349

Firmware Passwords Internet Internet 349

Security Affairs

JUNE 23, 2021

In October last year, experts reported a critical stack-based Buffer Overflow vulnerability, tracked as CVE-2020-5135 , in SonicWall Network Security Appliance (NSA) appliances. The post SonicWall finally fixed a flaw resulting from a partially patched 2020 zero-day appeared first on Security Affairs. Pierluigi Paganini.

VPN 88

VPN Firewall Firmware Authentication 88

CSO Magazine

JUNE 2, 2022

The goal of this technique is to install malicious code deep inside computer firmware where it cannot be blocked by operating systems and third-party endpoint security products. Firmware implants are powerful and are usually used in high-value operations by state-sponsored hacker groups.

Firmware 100

Firmware Ransomware Engineering 100

Schneier on Security

JANUARY 28, 2019

Hackers can also build botnets with the help of exploits and vulnerabilities in router firmware, but the easiest way to assemble a botnet is by collecting the ones that users have failed to secure with custom passwords. I am interested in the results of this survey.

IoT 226

IoT Government Firmware Hacking 226

Security Affairs

MARCH 8, 2021

via the unauthorized remote command execution vulnerability (CVE-2020-2506 & CVE-2020-2507). Threat actors are exploiting two unauthorized remote command execution vulnerabilities, tracked as CVE-2020-2506 & CVE-2020-2507, in the Helpdesk app that have been fixed by the vendor in October 2020.

Cryptocurrency 113

Cryptocurrency Firmware Malware Threat Detection 113

Troy Hunt

NOVEMBER 25, 2020

I also looked at custom firmware and soldering and why, to my mind, that was a path I didn't need to go down at this time. Let's got through the options: Firmware Patching I'll start with the devices themselves and pose a question to you: can you remember the last time you patched the firmware in your light globes? Or vibrator.

IoT 358

IoT Firmware Risk Manufacturing 358

CSO Magazine

JULY 27, 2022

A sophisticated rootkit that's able to insert itself into the lowest levels of Windows computers -- the motherboard firmware -- has been making victims since 2020 after disappearing from the radar for around three years. The Unified Extensible Firmware Interface (UEFI) is the modern equivalent to the BIOS.

Firmware 81

Firmware Malware 81

Security Affairs

MAY 4, 2023

In order to exploit the flaw, an attacker has to upgrade an affected device to a crafted version of the firmware. “This vulnerability is due to a missing authentication process within the firmware upgrade function.” The IT giant has not addressed the issue because SPA112 2-Port phone adapters reached EoL on June 1, 2020.

Firmware 91

Firmware Education Media Authentication 91

Heimadal Security

MAY 7, 2021

investigation, millions of people around the UK could be at risk of using routers with security flaws, or that are no longer being supported with firmware updates. Image Source: BBC After surveying over 6,000 adults in December 2020, Which? identified 13 older routers that are still being used by households […].

Firmware 94

Firmware Risk Cybersecurity 94

The Hacker News

MAY 5, 2021

1, 2020, reside in a firmware update driver named "dbutil_2_3.sys" PC maker Dell has issued an update to fix multiple critical privilege escalation vulnerabilities that went undetected since 2009, potentially allowing attackers to gain kernel-mode privileges and cause a denial-of-service condition. sys" that comes pre-installed on

Firmware 105

Firmware 105

Security Affairs

JULY 25, 2020

The vulnerabilities have been reported by the ACE Team at Loginsoft, below the full list included in the security advisory published by the vendor: CVE-2020-15892 :: Link :: DAP 1520 :: Buffer overflow in the `ssi` binary, leading to arbitrary command execution. B09 (and below) will receive no security updates remaining vulnerable.

Firmware 104

Firmware Advertising Authentication Hacking 104

Security Affairs

DECEMBER 3, 2020

The infamous TrickBot gets a new improvement, authors added a new feature dubbed “ TrickBoot ” designed to exploit well-known vulnerabilities in the UEFI/BIOS firmware and inject malicious code, such as bootkits. TrickBot, one of the most active botnets, in the world, gets a new improvement by adding a UEFI/BIOS Bootkit Feature.

Firmware 96

Firmware Malware Manufacturing Hacking 96

Hacker Combat

JUNE 3, 2021

Industrial switches are made using universal firmware developed by Korenix Technology, a leading provider for industrial networking solutions based in Taiwan. Since mid-April in 2020, the Atos-owned organization has struggled to have the security loopholes fixed in vain. Malicious firmware and bootloader uploads are possible too.

Firmware 78

Firmware Energy and Utilities Cyber Attacks Surveillance 78

Security Affairs

OCTOBER 5, 2020

.” When the botnet was first detected in 2019, experts noticed it was exploiting the Tenda zero-day flaw tracked as CVE-2020-10987. The vulnerability was detailed in July 2020 by the security researchers Sanjana Sarda. “We recommend that Tenda router users check their firmware and make necessary update.”

IoT 141

IoT Firmware DNS Advertising 141

Security Affairs

DECEMBER 15, 2020

The vulnerabilities ((CVE-2020-25183, CVE-2020-25187, CVE-2020-27252)) could be only exploited by an attacker within the Bluetooth range of the vulnerable product. The third vulnerability, tracked as CVE-2020-27252, is a race condition that could be leveraged to upload and execute unsigned firmware on the Patient Reader.

Firmware 105

Firmware Authentication Mobile IoT 105

Security Affairs

JUNE 22, 2020

AMD is going to release patches for a flaw affecting the System Management Mode (SMM) of the Unified Extensible Firmware Interface (UEFI). The vulnerability was discovered by the security researcher Danny Odler, it resides in the AMD’s Mini PC could allow attackers to manipulate secure firmware and execute arbitrary code.

Firmware 97

Firmware Architecture Advertising Manufacturing 97

Security Affairs

AUGUST 7, 2021

Threat actors are actively exploiting a critical authentication bypass issue (CVE-2021-20090 ) affecting home routers with Arcadyan firmware. Threat actors actively exploit a critical authentication bypass vulnerability, tracked as CVE-2021-20090 , impacting home routers with Arcadyan firmware to deploy a Mirai bot.

IoT 143

IoT Firmware Authentication Wireless 143

CyberSecurity Insiders

NOVEMBER 11, 2021

The string “Server: Boa/0.93.15” is mapped to the function “main_infectFunctionGponFiber,” (see figure 4) which attempts to exploit a vulnerable target, allowing the attacker to execute an OS command via a specific web request (CVE-2020-8958 as shown in figure 5). CVE-2020-8515. CVE-2020-9377. A2pvI042j1.d26m.

Malware 85

Malware IoT Firmware Authentication 85

CyberSecurity Insiders

MARCH 1, 2021

As per the document ‘Mobile Malware Evolution 2020’ document released by Kaspersky, the online banking services have become prime targets to those spreading Mobile Adware. Among the most popular adware witnessed in 2020, Ewind followed by FakeAdBlocker remained as the leading malware families in the past year, followed by HiddenAd malware.

Adware 141

Adware Banking Mobile Firmware 141

Security Affairs

DECEMBER 8, 2020

The high-severity vulnerabilities tracked as CVE-2020-2495, CVE-2020-2496, CVE-2020-2497, and CVE-2020-2498 are cross-side-scripting flaws that could allow remote attackers to inject malicious code in File Station, to inject malicious code in System Connection Logs, and to inject malicious code in certificate configuration.

Firmware 106

Firmware Malware Ransomware Hacking 106

Security Affairs

DECEMBER 12, 2020

The flaw, tracked as CVE-2020-25191, affects driver versions prior to 20.5. Update the firmware on CompactRIO controllers to v8.5 Refer to Upgrading Firmware on my NI Linux Real-Time Device for directions on how to update the firmware on current controllers. ” reads the security advisory published by CISA.

Firmware 93

Firmware Manufacturing Software Authentication 93

Security Affairs

DECEMBER 21, 2020

Critical vulnerabilities tracked as CVE-2020-29492 and CVE-2020-29491 affect several Dell Wyse thin client models that could be exploited by a remote attacker to execute malicious code and gain access to arbitrary files. Both CVE-2020-29492 and CVE-2020-29491 reside in the ThinOS operating system that runs on Dell Wyse thin clients.

Hacking 104

Hacking Firmware DNS Healthcare 104

Security Affairs

APRIL 25, 2021

Threat actors are exploiting two vulnerabilities in the popular file-sharing server FileZen , tracked as CVE-2020-5639 and CVE-2021-20655 , to steal sensitive data from businesses and government organizations. Soliton addressed both flaws in FileZen solutions with the release of firmware versions V4.2.8 and V5.0.3.

System Administration 117

System Administration Firmware Government Hacking 117

Security Affairs

JULY 31, 2020

This week, firmware security company Eclypsium reported that billions of Windows and Linux devices are affected by a serious GRUB2 bootloader issue (CVE-2020-10713), dubbed BootHole , that can be exploited to install a stealthy malware. minimal" version from Binary DVD iso downloaded on 7/29/2020 on system running in EFI mode 2.

Firmware 85

Firmware Advertising Malware Hacking 85

CyberSecurity Insiders

DECEMBER 30, 2021

Technically speaking, it is actually a malicious software rootkit that is loaded onto the firmware operating on the remote server management processors dubbed Integrated Lights-out(iLO). Iranian Cybersecurity firm Amnpardaz has released a security report stating that HP iLO devices were loaded with a data wiping malware dubbed iLOBleed.

Malware 140

Malware Firmware Cyber threats Software 140

Security Affairs

MARCH 28, 2020

The two critical remote command injection vulnerabilities tracked as CVE-2020-8515 affect DrayTek Vigor network devices, including enterprise switches, routers, load-balancers, and VPN gateway. On the 6th Feb, we released an updated firmware to address this issue.” firmware or later. ” reads the security bulletin.

Firmware 84

Firmware VPN Accountability Advertising 84

SecureWorld News

JULY 9, 2020

Home routers are one of the many poster children for 2020. In its study, "Home Router Security Report 2020," EU cybersecurity firm Fraunhofer sought to answer five questions about some of the most popular home routers: Days Since Last Firmware Update Release: when were the devices updated last time? But that's not all.

Firmware 86

Firmware IoT Education Cybersecurity 86

Security Affairs

AUGUST 20, 2021

In the previous report published by the company and related 2H 2020 report, the number of vulnerabilities disclosed was 449, affecting 59 vendors. Vulnerabilities exploitable through local attack vectors rose to 31.55%, in the 2H 2020 the percentage was 18.93%. vulnerabilities with remediation, 59.49% require software fixes.

Firmware 105

Firmware Ransomware Manufacturing Software 105

Security Affairs

NOVEMBER 29, 2020

Tracked as CVE-2020-25159 , the flaw is rated 9.8 The flaw, tracked as CVE-2020-25159, has received a CVSS score of 9.8 Experts was that vendors may have bought vulnerable versions of this stack before the 2012 update and are still using it in their firmware. ” reads the security advisory published by Claroty.

Hacking 129

Hacking Firmware Internet Internet 129

CyberSecurity Insiders

MAY 14, 2021

Stack Smashing the hacker who tweeted on May 8th of this year that the microcontroller of the AirTag can be influenced by tech that can thereafter help the threat actor take control of the firmware and operations of the tracking device thereafter. Apple is yet to respond to the claims made by Tile.

Hacking 84

Hacking Firmware DDOS Scams 84