2021, Authentication, Firewall and Firmware

UDP Technology IP Camera firmware vulnerabilities allow for attacker to achieve root

Malwarebytes

JULY 28, 2021

Researchers at RandoriSec have found serious vulnerabilities in the firmware provided by UDP Technology to Geutebrück and many other IP camera vendors. According to the researchers the firmware supplier UDP Technology fails to respond to their reports despite numerous mails and LinkedIn messages. History lessons.

Firmware

Firmware Technology Authentication IoT

Zyxel warns customers of attacks on its enterprise firewall and VPN devices

Security Affairs

JUNE 24, 2021

Networking equipment giant Zyxel warns customers of a series of attacks that have been targeting some of its enterprise firewall and VPN devices. Networking equipment vendor Zyxel warned its customers of a series of attacks that have been targeting some of its enterprise firewall and VPN server solutions. Pierluigi Paganini.

VPN

VPN Firewall Firmware Authentication

SonicWall issues firmware patch after attackers exploited critical bugs

SC Magazine

FEBRUARY 3, 2021

x firmware. x firmware, which malicious actors exploited in a cyberattack against the infosec firm last month. . SonicWall’s firmware update to version 10.2.0.5-29sv The post SonicWall issues firmware patch after attackers exploited critical bugs appeared first on SC Media. SonicWall). 31 and Feb.

Firmware

Firmware Mobile InfoSec Passwords

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

335,923 out of 489,337 Fortinet firewalls vulnerable to CVE-2023-27997

Security Affairs

JULY 3, 2023

Researchers reported that there are 490,000 Fortinet firewalls exposing SSL VPN interfaces on the internet, and roughly 69% of them are still vulnerable to CVE-2023-27997. For this reason, if the customer has SSL-VPN enabled, Fortinet is advising customers to take immediate action to upgrade to the most recent firmware release.

Firewall

Firewall VPN Firmware Internet

The Biggest Lessons about Vulnerabilities at RSAC 2021

eSecurity Planet

MAY 28, 2021

We look at three RSAC 2021 sessions and some of the most daunting vulnerabilities presented by the SANS Institute, Cybersecurity and Infrastructure Security Agency (CISA), and Varonis Systems. Also Read: And the Winner of the 2021 RSA Innovation Contest is… SANS: Five dangerous new attack techniques and vulnerabilities.

Software

Software Firmware DNS VPN

Russia-linked APT28 compromised Ubiquiti EdgeRouters to facilitate cyber operations

Security Affairs

FEBRUARY 28, 2024

The Mirai -based Moobot botnet was first documented by Palo Alto Unit 42 researchers in February 2021, in November 2021, it started exploiting a critical command injection flaw ( CVE-2021-36260 ) in the webserver of several Hikvision products. Upgrade to the latest firmware version.

Energy and Utilities

Energy and Utilities Government Firewall Malware

SonicWall finally fixed a flaw resulting from a partially patched 2020 zero-day

Security Affairs

JUNE 23, 2021

A critical vulnerability, tracked as CVE-2021-20019 , in SonicWall VPN appliances was only partially patched last year and could allow a remote attacker to steal sensitive data. This flaw exists pre-authentication and within a component (SSLVPN) which is typically exposed to the public Internet.”. 6.5.1.12, 6.0.5.3, SonicOSv 6.5.4.v

VPN

VPN Firewall Firmware Authentication

SonicWall warns users to patch critical vulnerability “as soon as possible”

Malwarebytes

SEPTEMBER 24, 2021

It sells a range of Internet appliances primarily directed at content control and network security, including devices providing services for network firewalls, unified threat management (UTM), virtual private networks (VPNs), and anti-spam for email. The critical bug has received a score of 9.1 out of 10 on the CVSS scale of severity.

Firmware

Firmware Internet Internet Firewall

CISA is warning of vulnerabilities in GE Power Management Devices

Security Affairs

MARCH 23, 2021

“GE strongly recommends users with impacted firmware versions update their UR devices to UR firmware Version 8.10, or greater to resolve these vulnerabilities. GE provides additional mitigations and information about these vulnerabilities in GE Publication Number: GES-2021-004 (login required).”

Firmware

Firmware VPN Firewall Risk

Top 6 Rootkit Threats and How to Protect Yourself

eSecurity Planet

NOVEMBER 7, 2022

In 2021, Connelly and other researchers presented a new paper outlining an approach to detecting rootkits similar to CloudSkulk. Firmware Rootkit. A firmware rootkit uses device or platform firmware to create a persistent malware image in the router, network card, hard drive or the basic input/output system (BIOS).

Firmware

Firmware Malware Antivirus Firewall

NSA, CISA Release Guidance for Choosing and Hardening VPNs

eSecurity Planet

OCTOBER 1, 2021

28 NSA-CISA document (PDF download) urges buyers to use standards-based VPNs from vendors with a track record of swiftly addressing known vulnerabilities and using strong authentication credentials. Examine whether a product offers strong authentication credentials and protocols by default, as opposed to weak credentials and protocols.

VPN

VPN Authentication Passwords Software

Remotely Accessing Secure Kali Pi

Kali Linux

NOVEMBER 27, 2022

To enable wireless support, we need to find: The kernel Wi-Fi modules that need to be in the initramfs (Depends on hardware) The Wi-Fi firmware files that need to be in the initramfs (Depends on hardware) The Wireless interface name (Kali defaults to: wlan0 ) Additional packages to increase functionally. bin firmware: brcm/brcmfmac*-sdio.*.txt

Firmware

Firmware Wireless Passwords VPN

BotenaGo strikes again – malware source code uploaded to GitHub

CyberSecurity Insiders

JANUARY 26, 2022

In November 2021, AT&T Alien Labs™ first published research on our discovery of new malware written in the open-source programming language Golang. In our November 2021 research article, Alien Labs first described its findings about the new BotenaGo malware along with technical details. Executive summary. Recommended actions.

Malware

Malware IoT Authentication Antivirus

Comprehensive analysis of initial attack samples exploiting CVE-2023-23397 vulnerability

SecureList

JULY 19, 2023

The connection to the remote SMB server sends the user’s Net-NTLMv2 hash in a negotiation message, which the threat actor can use to either: Relay for authentication against other systems that support NTLMv2 authentication. only traces of connections to the WebUI could be stored in the firewall logs.

Firmware

Firmware Internet Internet Government

Advanced threat predictions for 2023

SecureList

NOVEMBER 14, 2022

In another publication , Google also followed up on the activities of a similar vendor named Cytrox that had leveraged four 0-day vulnerabilities in a 2021 campaign. Okta is a widely used authentication services provider, and it is safe to assume that a hacker controlling their network would be able to infect any of their customers.

Firmware

Firmware Surveillance Mobile Telecommunications

Satellites are critical infrastructure and need to be cybersecured

Malwarebytes

MARCH 29, 2022

In September 2021, the total number of satellites amounted to 4550 , with 1655 of them belonging to SpaceX. It wasn’t until NASA set up the Cyber Defense Engineering and Research Group (CDER) that anyone looked at the unique cybersecurity requirements that distinguishes space mission systems from traditional firewalled data servers.

Cybersecurity

Cybersecurity Internet Internet Technology

The Internet of Things Is Everywhere. Are You Secure?

Security Boulevard

MARCH 18, 2021

According to Gartner research , 35 billion devices will be connected to the internet in 2021, and that number will more than double in the next few years to reach 75 billion connected devices by 2025. Staying current with firmware patches and updates is also key to enabling robust security. . Don’t Forget the Application Layer.

Internet

Internet Internet IoT Software

Cyber Security Informer

UDP Technology IP Camera firmware vulnerabilities allow for attacker to achieve root

Zyxel warns customers of attacks on its enterprise firewall and VPN devices

Webinars

Trending Sources

SonicWall issues firmware patch after attackers exploited critical bugs

Webinars

335,923 out of 489,337 Fortinet firewalls vulnerable to CVE-2023-27997

The Biggest Lessons about Vulnerabilities at RSAC 2021

Russia-linked APT28 compromised Ubiquiti EdgeRouters to facilitate cyber operations

SonicWall finally fixed a flaw resulting from a partially patched 2020 zero-day

SonicWall warns users to patch critical vulnerability “as soon as possible”

CISA is warning of vulnerabilities in GE Power Management Devices

Top 6 Rootkit Threats and How to Protect Yourself

NSA, CISA Release Guidance for Choosing and Hardening VPNs

Remotely Accessing Secure Kali Pi

BotenaGo strikes again – malware source code uploaded to GitHub

Comprehensive analysis of initial attack samples exploiting CVE-2023-23397 vulnerability

Advanced threat predictions for 2023

Satellites are critical infrastructure and need to be cybersecured

The Internet of Things Is Everywhere. Are You Secure?

Stay Connected