Security Affairs

DECEMBER 9, 2021

Dark Mirai botnet spreads by exploiting a new vulnerability, tracked as CVE-2021-41653, affecting TP-Link TL-WR840N EU V5 home routers. “The PING function on the TP-Link TL-WR840N EU v5 router with firmware through TL-WR840N(EU)_V5_171211 is vulnerable to remote code execution via a crafted payload in an IP address input field.”

Firmware 143

Firmware Architecture Malware Hacking 143

Security Affairs

JULY 17, 2021

Network equipment vendor D-Link has released a firmware hotfix to fix multiple vulnerabilities in the DIR-3040 AC3000-based wireless internet router. Network equipment vendor D-Link has released a firmware hotfix to address multiple vulnerabilities affecting the DIR-3040 AC3000-based wireless internet router. score of 7,5.

Firmware 117

Firmware Wireless Passwords Internet 117

Security Affairs

OCTOBER 15, 2021

A joint cybersecurity advisory published by US agencies revealed that three ransomware attacks on wastewater systems this year. A joint cybersecurity advisory published today by the FBI, NSA, CISA, and the EPA revealed three more attacks launched by Ransomware gangs against US water and wastewater treatment facilities (WWS) this year.

Ransomware 94

Ransomware Cyber threats Firmware Backups 94

Security Affairs

JULY 18, 2021

“Through the course of collaboration with trusted third parties, SonicWall has been made aware of threat actors actively targeting Secure Mobile Access (SMA) 100 series and Secure Remote Access (SRA) products running unpatched and end-of-life (EOL) 8.x x firmware in an imminent ransomware campaign using stolen credentials.”

Ransomware 116

Ransomware Firmware Mobile InfoSec 116

Security Affairs

SEPTEMBER 6, 2021

Netgear has released security updates to address high-severity vulnerabilities affecting several of its smart switches used by businesses. Netgear has released firmware updates to address high-severity vulnerabilities in more than a dozen of its smart switches used on businesses. GC108PP fixed in firmware version 1.0.8.2

Firmware 105

Firmware Authentication Passwords Hacking 105

Security Affairs

AUGUST 23, 2022

Security researchers from CYFIRMA have discovered over 80,000 Hikvision cameras affected by a critical command injection vulnerability tracked as CVE-2021-36260. The Chinese vendor addressed the issue in September 2021, but tens of thousands of devices are yet to be patched. wrote the expert. “.

Hacking 114

Hacking Firmware Internet Internet 114

Security Affairs

APRIL 19, 2022

Lenovo warns of vulnerabilities in its Unified Extensible Firmware Interface (UEFI) shipped with at least 100 notebook models. Two vulnerabilities, tracked as CVE-2021-3971 and CVE-2021-3972 , can be exploited by an attacker to disable the protection for the SPI flash memory chip and turn off the UEFI Secure Boot feature.

Firmware 86

Firmware Manufacturing Hacking Cybersecurity 86

Security Affairs

AUGUST 2, 2021

Cybersecurity researchers disclosed multiple flaws, dubbed PwnedPiper , that left a widely-used pneumatic tube system (PTS) vulnerable to attacks. An attacker could also push an insecure firmware upgrade to fully compromise the devices. The CVE-2021-37160 has yet to be addressed. that addresses most of the above vulnerabilities.

Healthcare 107

Healthcare Firmware Manufacturing Ransomware 107

Security Affairs

AUGUST 27, 2021

Researchers at industrial and IoT cybersecurity firm Nozomi Networks have discovered a critical flaw affecting a video surveillance product made by Annke, a popular manufacturer of surveillance systems and solutions. ” reads the security advisory published by Nozomi Networks Labs. The mainboard of the Annke N48PBB.

Surveillance 100

Surveillance Hacking Firmware Manufacturing 100

Security Affairs

NOVEMBER 10, 2021

Researchers from software development company JFrog and industrial cybersecurity firm Claroty have identified a total of 14 new critical vulnerabilities in BusyBox. CVE-2021-42373 A NULL pointer dereference in man leads to denial of service when a section name is supplied but no page argument is given man 1.33.0-1.33.1

Risk 124

Risk Firmware Software Hacking 124

The Last Watchdog

JUNE 4, 2019

With the largest concentration of cybersecurity expertise –– the “oil” — in the world, Maryland is fast changing from the Old Line State into “Cybersecurity Valley.” The foundation of Silicon Valley was set, and today comparable technology development pieces are being laid in Maryland on the cybersecurity front.

Cybersecurity 193

Cybersecurity Computers and Electronics Technology Marketing 193

Security Affairs

JUNE 24, 2021

Researchers from cybersecurity firm Eclypsium discovered multiple vulnerabilities affecting the BIOSConnect feature of Dell Client BIOS that could be exploited by a privileged attacker to execute arbitrary code at the BIOS/UEFI level of the affected device. “This chain of vulnerabilities has a cumulative CVSS score of 8.3

Firmware 74

Firmware Hacking Technology Ransomware 74

Security Affairs

JUNE 24, 2021

The threat actors are targeting the USG, ZyWALL, USG FLEX, ATP, and VPN series running on-premise ZLD firmware. link] pic.twitter.com/EpBsc715kI — JAMESWT (@JAMESWT_MHT) June 24, 2021. The company states that devices running the Nebula cloud management mode are not impacted.

VPN 111

VPN Firewall Firmware Authentication 111

Security Affairs

FEBRUARY 28, 2024

The Federal Bureau of Investigation (FBI), National Security Agency (NSA), US Cyber Command, and international partners released a joint Cybersecurity Advisory (CSA) to warn that Russia-linked threat actors are using compromised Ubiquiti EdgeRouters (EdgeRouters) to evade detection in cyber operations worldwide.

Energy and Utilities 97

Energy and Utilities Government Firewall Malware 97

Security Affairs

APRIL 12, 2022

Cybersecurity and Infrastructure Security Agency (CISA) added the CVE-2022-23176 flaw in WatchGuard Firebox and XTM appliances to its Known Exploited Vulnerabilities Catalog. The malware leverages the firmware update process to achieve persistence. Cyclops Blink is sophisticated malware with a modular structure.

Firmware 85

Firmware Malware Cybersecurity Hacking 85

Security Affairs

MAY 25, 2021

The flaws addressed by the security firm were reported by experts from Cisco Talos. “ TALOS-2021-1230 (CVE-2021-32457) and TALOS-2021-1231 (CVE-2021-32458) are elevation of privilege vulnerabilities that could allow an attacker to obtain elevate permissions on the targeted device.

Network Security 119

Network Security Authentication Firmware Passwords 119

Security Affairs

APRIL 25, 2021

Threat actors are exploiting two vulnerabilities in the popular file-sharing server FileZen , tracked as CVE-2020-5639 and CVE-2021-20655 , to steal sensitive data from businesses and government organizations. Soliton addressed both flaws in FileZen solutions with the release of firmware versions V4.2.8 and V5.0.3.

System Administration 116

System Administration Firmware Government Hacking 116

Security Affairs

SEPTEMBER 3, 2021

.” The PIN provides a series of examples of ransomware attacks impacting food and agriculture sector businesses, such as an attack that took place in January 2021 against an identified US farm that resulted in losses of approximately $9 million due to the disruption of the farming operations. hard drive, storage device, the cloud).

Ransomware 98

Ransomware Passwords Backups Firmware 98

Security Affairs

NOVEMBER 30, 2021

Cybersecurity researchers from F-Secure have discovered two critical vulnerabilities, collectively tracked as Printing Shellz , that impact approximately 150 multifunction printer models. The vulnerabilities can be exploited by attackers to take control of vulnerable devices and steal sensitive information, from enterprise networks.

Social Engineering 99

Social Engineering Firmware Engineering Hacking 99

Security Affairs

MAY 19, 2021

Security researchers identified five vulnerabilities in the infotainment system in Mercedes-Benz cars, four of them are remotely exploitable. Experts reported the vulnerabilities to Daimler in November 2020 and the carmaker released security patches starting from late January 2021. ” concludes the report.

Hacking 95

Hacking Firmware Engineering Software 95

Security Affairs

FEBRUARY 14, 2022

The US Federal Bureau of Investigation (FBI) published a joint cybersecurity advisory with the US Secret Services which revealed that the BlackByte ransomware group has breached at least three organizations from US critical infrastructure sectors in the last three months. Secret Service (USSS) to provide information on BlackByte ransomware.

Ransomware 91

Ransomware Accountability Firmware Antivirus 91

Security Affairs

NOVEMBER 20, 2021

Every week the best security articles from Security Affairs free for you in your email box. The post Security Affairs newsletter Round 341 appeared first on Security Affairs. If you want to also receive for free the newsletter with the international press subscribe here. Pierluigi Paganini.

Banking 66

Banking Small Business Data breaches Firmware 66

Security Affairs

MARCH 23, 2021

Cybersecurity & Infrastructure Security Agency (CISA) warns of flaws in GE Power Management Devices that could allow an attacker to conduct multiple malicious activities on vulnerable systems. GE provides additional mitigations and information about these vulnerabilities in GE Publication Number: GES-2021-004 (login required).”

Firmware 80

Firmware VPN Firewall Risk 80

Security Affairs

MARCH 19, 2022

The Federal Bureau of Investigation (FBI) published a joint cybersecurity advisory warning of AvosLocker ransomware attacks targeting multiple US critical infrastructure. Install updates/patch operating systems, software, and firmware as soon as updates/patches are released. Focus on cyber security awareness and training.

Ransomware 99

Ransomware DDOS Passwords Backups 99

Security Affairs

JUNE 27, 2022

” reads the advisory published by Chinese cybersecurity firm NSFOCUS said. ” “CodeSys has published an official security advisory that has fixed the mentioned vulnerabilities. The timeline of the issues is: On September 15, 2021 ?Started

Software 85

Software Manufacturing Firmware Risk 85

Security Affairs

APRIL 19, 2023

The joint advisory provides detailed info on tactics, techniques, and procedures (TTPs) associated with APT28’s attacks conducted in 2021 that exploited the flaw in Cisco routers. The Russia-linked APT28 conducted the attacks in 2021 and targeted a small number of entities in Europe, U.S. ” reads the joint advisory.

Malware 86

Malware Firmware Government Education 86

Security Affairs

MAY 21, 2023

Please vote for Security Affairs ( [link] ) as the best European Cybersecurity Blogger Awards 2022 – VOTE FOR YOUR WINNERS Vote for me in the sections where is reported Securityaffairs or my name Pierluigi Paganini Please nominate Security Affairs as your favorite blog.

Data breaches 89

Data breaches Cybercrime Ransomware Passwords 89

Security Affairs

JANUARY 16, 2022

The threat actors behind the attacks were exploiting an improper authorization vulnerability, tracked as CVE-2021-28799 , that could allow them to log in to a NAS device. “A A ransomware campaign targeting QNAP NAS began the week of April 19th, 2021. reads the security advisory published by the vendor.

Ransomware 114

Ransomware Encryption Backups Firmware 114

Security Affairs

APRIL 11, 2021

Clop Ransomware operators plunder US universities Malware attack on Applus blocked vehicle inspections in some US states 2,5M+ users can check whether their data were exposed in Facebook data leak 33.4%

Cyber Attacks 53

Cyber Attacks Firmware Malware VPN 53

Security Affairs

MARCH 16, 2022

The nation-state actors gained access to the network by exploiting default MFA protocols and the Windows Print Spooler vulnerability, “PrintNightmare” ( CVE-2021-34527 ), reads the advisory. Update software, including operating systems, applications, and firmware on IT network assets in a timely manner.

Accountability 93

Accountability Passwords Authentication Firmware 93

Security Affairs

MARCH 4, 2021

In July 2020, researchers at the cybersecurity firmware Eclypsium disclosed a buffer overflow vulnerability, tracked as CVE-2020-10713 and dubbed BootHole , which can be exploited by attackers to install persistent and stealthy malware. CVE-2021-3418 – grub2: GRUB 2.05

Firmware 91

Firmware Malware Hacking Cybersecurity 91

Malwarebytes

MARCH 17, 2021

link] pic.twitter.com/NOPAcEFxM8 — FBI Buffalo (@FBIBuffalo) March 16, 2021. To prevent attacks: Install security updates for operating systems, software, and firmware as soon as they are released. Provide users with training on information security principles and techniques as well as emerging cybersecurity risks.

Education 106

Education Ransomware Phishing Passwords 106

Security Affairs

MARCH 18, 2022

In fact, Ericsson Network Manager is an Operations support system (‘OSS’ according to network jargon) , which allows the management of all the devices interconnected to it, ensuring the management of configurations, firmware updates and all automation and maintenance operations of an advanced mobile radio network.

Mobile 102

Mobile Firmware Architecture Technology 102

Security Affairs

MAY 2, 2021

The duo called the hack TBONE and presented it at the CanSecWest 2021 Conference , below the video of the presentation: Weinmann and Schmotzle explained that the ConnMan is also widely used in infotainment systems of other carmakers, for this reason they engaged German CERT and other actors of the automotive industry.

Hacking 115

Hacking Firmware Manufacturing Software 115

Security Affairs

JANUARY 2, 2022

If you want to also receive for free the newsletter with the international press subscribe here.

Banking 92

Banking Firmware Malware Ransomware 92

Security Affairs

APRIL 2, 2021

The Federal Bureau of Investigation (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA) published a joint alert to warn of attacks carried out by APT groups targeting Fortinet FortiOS servers using multiple exploits. hard drive, storage device, the cloud). Use multifactor authentication where possible.

Passwords 66

Passwords Government Firmware Accountability 66

eSecurity Planet

MAY 20, 2024

CVE-2021-40655 is an information disclosure vulnerability that allows an attacker to forge a request and steal credentials; it affects DIR-605 routers. Note that some DIR-600 devices are end of life, so D-Link won’t release any firmware updates for these.

VPN 62

VPN Firmware Malware Software 62