SecureList

JUNE 8, 2022

During 2020 and 2021, more than 500 router vulnerabilities were found. The nvd.nist.gov website presents different figures, but they too show a significant increase in the number of router vulnerabilities found in 2020 and 2021. Distribution of router vulnerabilities by priority, 2021 ( download ). Router-targeting malware.

DDOS 88

DDOS Passwords IoT Firmware 88

eSecurity Planet

APRIL 28, 2022

cybersecurity agencies joined their counterparts around the globe to urge organizations to address the top 15 vulnerabilities exploited in 2021. The advisory entails the top 15 Common Vulnerabilities and Exposures (CVEs) that were routinely exploited by malicious cyber actors in 2021, plus another 21 frequently exploited CVEs.

Cybersecurity 110

Cybersecurity Software Firmware Internet 110

Security Affairs

SEPTEMBER 6, 2021

Netgear has released firmware updates to address high-severity vulnerabilities in more than a dozen of its smart switches used on businesses. Netgear has addressed three vulnerabilities tracked by the vendor as PSV-2021-0140, PSV-2021-0144, PSV-2021-0145 that received a CVSS score between 7.4 ” explained Coldwind.

Firmware 106

Firmware Authentication Passwords Hacking 106

Security Affairs

DECEMBER 31, 2021

Researchers discovered multiple high-risk vulnerabilities affecting the latest firmware version for the Netgear Nighthawk R6700v3 router. Researchers from Tenable have discovered multiple vulnerabilities in the latest firmware version (version 1.0.4.120) of the popular Netgear Nighthawk R6700v3 WiFi router. Vendor supplies information.

Firmware 125

Firmware Encryption Authentication Passwords 125

Security Affairs

OCTOBER 26, 2021

“Unknown cyber criminals using Ranzy Locker ransomware had compromised more than 30 US businesses as of July 2021. Install updates/patch operating systems, software, and firmware as soon as updates/patches are released. Use double authentication when logging into accounts or services. ” reads the flash alert.

Ransomware 130

Ransomware Firmware Antivirus Accountability 130

Thales Cloud Protection & Licensing

MARCH 17, 2022

Enhance your security posture by detecting risks on authenticator devices. Not only are mobile devices used as end points to access corporate mail and other enterprise applications, they are also frequently used as authentication devices. Limited visibility on users’ devices can undermine authentication integrity.

Authentication 77

Authentication Risk Mobile Computers and Electronics 77

Security Affairs

DECEMBER 9, 2021

Dark Mirai botnet spreads by exploiting a new vulnerability, tracked as CVE-2021-41653, affecting TP-Link TL-WR840N EU V5 home routers. “The PING function on the TP-Link TL-WR840N EU v5 router with firmware through TL-WR840N(EU)_V5_171211 is vulnerable to remote code execution via a crafted payload in an IP address input field.”

Firmware 143

Firmware Architecture Malware Hacking 143

Security Affairs

OCTOBER 7, 2021

A proof of concept exploit for two authentication bypass vulnerabilities in Dahua cameras is available online, users are recommended to immediately apply updates. “The identity authentication bypass vulnerability found in some Dahua products during the login process. Follow me on Twitter: @securityaffairs and Facebook.

Authentication 128

Authentication Firmware Hacking Engineering 128

Malwarebytes

AUGUST 9, 2021

On August 3, 2021 a vulnerability that was discovered by Tenable was made public. The vulnerability is listed as CVE-2021-20090. Router firmware. Under the description of CVE-2021-20090 you will find: “a path traversal vulnerability in the web interfaces of Buffalo WSR-2533DHPL2 firmware version <= 1.02

Firmware 126

Firmware DDOS Internet Internet 126

Security Affairs

JULY 17, 2021

Network equipment vendor D-Link has released a firmware hotfix to fix multiple vulnerabilities in the DIR-3040 AC3000-based wireless internet router. Network equipment vendor D-Link has released a firmware hotfix to address multiple vulnerabilities affecting the DIR-3040 AC3000-based wireless internet router. score of 7,5.

Firmware 119

Firmware Wireless Passwords Internet 119

Thales Cloud Protection & Licensing

MARCH 17, 2022

Enhance your security posture by detecting risks on authenticator devices. Not only are mobile devices used as end points to access corporate mail and other enterprise applications, they are also frequently used as authentication devices. Limited visibility on users’ devices can undermine authentication integrity.

Authentication 62

Authentication Risk Mobile Computers and Electronics 62

Security Affairs

DECEMBER 8, 2021

The most severe vulnerabilities addressed by SonicWall are two critical stack-based buffer overflow vulnerabilities tracked as CVE-2021-20038 and CVE-2021-20045 respectively. This vulnerability affected SMA 200, 210, 400, 410 and 500v appliances firmware 10.2.0.8-37sv, ” reads the advisory for the CVE-2021-20038 flaw.

Authentication 116

Authentication Firmware Hacking Information Security 116

Malwarebytes

AUGUST 24, 2021

Last time it was a vulnerability in the Arcadyan firmware found in devices distributed by some of today’s biggest router vendors and internet service providers, such as ASUS, Orange, Vodafone, Telstra, Verizon, Deutsche Telekom, and British Telecom. Vulnerabilities. Same botnet, same operator?

Firmware 96

Firmware IoT Internet Internet 96

Malwarebytes

APRIL 5, 2022

On April 4 2022, the Cybersecurity & Infrastructure Security Agency (CISA) added CVE-2021-45382 to its known exploited vulnerabilities catalog. As a general policy, when products reach EOS/EOL, they can no longer be supported, and all firmware development for these products cease. CISA catalog. The vulnerability.

Firmware 144

Firmware Software Risk Authentication 144

Security Affairs

MAY 25, 2021

Trend Micro fixed some flaws in Trend Micro Home Network Security devices that could be exploited to elevate privileges or achieve arbitrary authentication. Trend Micro fixed three vulnerabilities in Home Network Security devices that could be exploited to elevate privileges or achieve arbitrary authentication.

Network Security 120

Network Security Authentication Firmware Passwords 120

Security Affairs

AUGUST 24, 2021

On August 15, firmware security company IoT Inspector published details about the flaws. “One of the vulnerabilities disclosed, CVE-2021-35395 [2], affects the web interface that is part of the SDK, and is a collection of 6 different vulnerabilities. ” reported IoT Inspector. ” reported IoT Inspector.

IoT 123

IoT Firmware Internet Internet 123

Security Affairs

MAY 29, 2021

SonicWall urges customers to address a post-authentication flaw that affects on-premises versions of the Network Security Manager (NSM). SonicWall urges customers to ‘immediately’ address a post-authentication vulnerability, tracked as CVE-2021-20026 , impacting on-premises versions of the Network Security Manager (NSM).

Firmware 107

Firmware Authentication Network Security Hacking 107

Security Affairs

JUNE 24, 2021

The threat actors are targeting the USG, ZyWALL, USG FLEX, ATP, and VPN series running on-premise ZLD firmware. link] pic.twitter.com/EpBsc715kI — JAMESWT (@JAMESWT_MHT) June 24, 2021. Upon accessing the devices, attackers then bypass authentication and establish SSL VPN tunnels with unknown user accounts (i.e.

VPN 112

VPN Firewall Firmware Authentication 112

Security Affairs

MARCH 9, 2022

Two of the TLStorm vulnerabilities reside in the TLS implementation used by Cloud-connected Smart-UPS devices, while the third one is a design flaw in the firmware upgrade process of Smart-UPS devices. The researchers discovered that the firmware upgrades are not properly signed and validated.

Firmware 93

Firmware IoT Authentication Backups 93

Malwarebytes

OCTOBER 22, 2021

Unfortunately, in an echo of the Y2K bug, a flaw in some versions of GPSD could cause time to roll back after October 23, 2021. The buggy versions of the code reportedly subtract 1024 from the week number on October 24, 2021. Authentication mechanisms such as Time-based One-Time Password (TOTP) and Kerberos also rely heavily on time.

Authentication 144

Authentication System Administration Firmware Passwords 144

Security Affairs

NOVEMBER 10, 2022

The industrial automation giant ABB addressed the flaw with the release of firmware updates on July 14, 2022. The researchers initially discovered an authentication bypass issue, then explored the systems looking at functionalities available to authenticated users such as uploading and downloading configuration files.

Firmware 131

Firmware Authentication Passwords Manufacturing 131

CyberSecurity Insiders

NOVEMBER 25, 2021

From backdoors- As the Korean giant creates, validates and manufactures its computing devices all on its own, its every piece of hardware, wiring and firmware is securely drafted at its high secure R&D plants & factories in the world. Gift yourself a Samsung device from this Thanksgiving 2021 or Black Friday 2021 deals.

Mobile 132

Mobile Firmware Manufacturing Passwords 132

Security Affairs

AUGUST 27, 2021

The vulnerability, tracked as CVE-2021-32941 can be exploited by an attacker to hack a video surveillance product made by Annke, a provider of home and business security solutions. The experts performed reverse engineering of the firmware to fully unrestricted SSH access. The CVE-2021-32941 received a CVSS v3 base score of 9.4.

Surveillance 100

Surveillance Hacking Firmware Manufacturing 100

CyberSecurity Insiders

AUGUST 13, 2021

Tenable researchers claim hackers are exploiting a security flaw termed authentication-bypass vulnerability that is impact routers and internet of things (IoT) devices. What’s interesting about this attack campaign is the hackers are targeting devices running on the firmware that is being supplied by Arcadyan.

Firmware 136

Firmware DDOS Malware Manufacturing 136

Security Affairs

DECEMBER 14, 2022

million IP cameras exposed to the internet, signifying an eightfold increase since April 2021. While the default security settings have improved over the review period, some popular brands either offer default passwords or no authentication, meaning anyone can spy on the spies. The reign of a Chinese brand.

Surveillance 130

Surveillance Manufacturing Passwords Internet 130

Security Affairs

JUNE 18, 2021

The vulnerabilities impact devices running firmware versions prior 1.2.0.6 The vulnerabilities were collectively tracked as CVE-2021-1541, CVE-2021-1542, CVE-2021-1543, and CVE-2021-1571, the most severe one, CVE-2021-1542, was rated high severity. and which have the web-based management interface enabled.

Small Business 104

Small Business Firmware Authentication Accountability 104

Malwarebytes

DECEMBER 16, 2021

In 2021’s final Patch Tuesday, Microsoft included a total of 67 fixes for security vulnerabilities. CVE-2021-42310 Microsoft Defender for IoT Remote Code Execution vulnerability. No form of authentication is required for exploitation. CVE-2021-43905 Microsoft Office app Remote Code Execution vulnerability.

Wireless 82

Wireless Passwords Firmware Authentication 82

eSecurity Planet

NOVEMBER 4, 2021

CWE-1277 : Firmware Not Updateable – firmware exploitation exposes the victim to a permanent risk without any possibility to patch weaknesses. Hackers may use firmware exploitation to compromise the network, as the firmware links the operating system and the hardware. The most popular firmware is BIOS and UEFI.

Software 109

Software Firmware Computers and Electronics Risk 109

Security Affairs

SEPTEMBER 2, 2021

“we disclose BrakTooth, a family of new security vulnerabilities in commercial BT stacks that range from denial of service (DoS) via firmware crashes and deadlocks in commodity hardware to arbitrary code execution (ACE) in certain IoTs.” ” reads the post published by the researchers. ” continue the researchers.

Firmware 90

Firmware Manufacturing IoT Technology 90

Security Affairs

JULY 3, 2023

For this reason, if the customer has SSL-VPN enabled, Fortinet is advising customers to take immediate action to upgrade to the most recent firmware release. The researcher describes the issue as a reachable pre-authentication that impacts every SSL VPN appliance. states the report published by Fortinet. ” continues the report.

Firewall 84

Firewall VPN Firmware Internet 84

Security Affairs

FEBRUARY 28, 2024

The Mirai -based Moobot botnet was first documented by Palo Alto Unit 42 researchers in February 2021, in November 2021, it started exploiting a critical command injection flaw ( CVE-2021-36260 ) in the webserver of several Hikvision products. Upgrade to the latest firmware version.

Energy and Utilities 98

Energy and Utilities Government Firewall Malware 98

Thales Cloud Protection & Licensing

MAY 31, 2021

Tue, 06/01/2021 - 06:55. In our previous blog post , we discussed the challenges for securing IoT deployments, and how businesses and consumers benefit from authenticating and validating IoT software and firmware updates. A critical component of reliable IoT FAN deployments is the ability to secure firmware upgrades at scale.

IoT 71

IoT Computers and Electronics Manufacturing Firmware 71

Security Affairs

JULY 31, 2022

and Blackmatter ransomware U.S. increased rewards for info on North Korea-linked threat actors to $10 million Threat actors leverages DLL-SideLoading to spread Qakbot malware Zero Day attacks target online stores using PrestaShop? and Blackmatter ransomware U.S. and Blackmatter ransomware U.S.

Firmware 72

Firmware Surveillance Malware DDOS 72

Malwarebytes

JANUARY 12, 2022

Microsoft has a technology called Active Directory that allows workstations to authenticate with a “domain controller.” CVE-2021-22947 is regarding a vulnerability in the curl open source library which is used by Windows. CVE-2021-36976 is regarding a vulnerability in the libarchive open source library which is used by Windows.

Authentication 111

Authentication Firmware Passwords Technology 111

Malwarebytes

SEPTEMBER 24, 2021

In June of 2021 we wrote about another vulnerability in the same Secure Mobile Access (SMA) 100 series. SonicWall customers can log in to its MySonicWall.com website to get updated firmware for their appliances. Back then SonicWall had been made aware of an imminent ransomware campaign using stolen credentials. Mitigation.

Firmware 78

Firmware Internet Internet Firewall 78

Security Affairs

APRIL 23, 2021

Recently QNAP addressed a critical authentication bypass issue, tracked as CVE-2021-28799 , in its Hybrid Backup Sync. If you are using a QNAP NAS device update the above apps and its firmware as soon as possible. qlocker @QNAP_nas — Jack Cable (@jackhcable) April 22, 2021. I can help recover data.

Ransomware 120

Ransomware Backups Media Malware 120

Security Affairs

NOVEMBER 17, 2021

Netgear addressed a code execution vulnerability, tracked as CVE-2021-34991, in its small office/home office (SOHO) devices. Netgear released security patches that fix the vulnerability in multiple devices and announced that it is testing additional firmware fixes. D6220 – 1.0.0.72 D8500 – 1.0.3.60 DC112A – 1.0.0.56

Firmware 105

Firmware Authentication Hacking Internet 105