Security Affairs

MARCH 9, 2022

Two of the TLStorm vulnerabilities reside in the TLS implementation used by Cloud-connected Smart-UPS devices, while the third one is a design flaw in the firmware upgrade process of Smart-UPS devices. The researchers discovered that the firmware upgrades are not properly signed and validated.

Firmware 89

Firmware IoT Authentication Backups 89

Security Affairs

NOVEMBER 10, 2022

The vulnerability, CVE-2022-0902 (CVSS score: 8.1), is a path-traversal issue that can be exploited by an attacker to inject and execute arbitrary code. “Team82 found a high-severity path-traversal vulnerability (CVE-2022-0902) in ABB’s TotalFlow Flow Computers and Remote Controllers. .”

Firmware 125

Firmware Authentication Passwords Manufacturing 125

Security Affairs

MAY 4, 2023

In order to exploit the flaw, an attacker has to upgrade an affected device to a crafted version of the firmware. “This vulnerability is due to a missing authentication process within the firmware upgrade function.” “Cisco has not released firmware updates to address this vulnerability.

Firmware 80

Firmware Education Media Authentication 80

Security Affairs

AUGUST 13, 2023

The CVE-2022-47391 received a severity rating of 7.5, “The discovery of these vulnerabilities highlights the critical importance of ensuring the security of industrial control systems and underscores the need for continuous monitoring and protection of these environments.” ” reads the advisory published by Microsoft.

Authentication 84

Authentication Firmware Hacking Passwords 84

Security Affairs

JANUARY 14, 2024

The vulnerability is an improper error message handling in Zyxel ZyWALL/USG series firmware versions 4.60 through 4.73, VPN series firmware versions 4.60 through 5.35, USG FLEX series firmware versions 4.60 through 5.35, and ATP series firmware versions 4.60 through 5.35. reported the SektorCERT. “An

Firewall 96

Firewall Firmware Cyber Attacks VPN 96

Security Affairs

AUGUST 18, 2022

The PoC exploit code for a critical stack-based buffer overflow issue, tracked as CVE-2022-27255 (CVSS 9.8), affecting networking devices using Realtek’s RTL819x system on a chip was released online. ” reads the advisory published by Realtek, which published the issue in March 2022. exploits_nexx t: PoC and exploit code.

Firmware 145

Firmware IoT Hacking Authentication 145

Security Affairs

MARCH 3, 2023

Both vulnerabilities were reported in November 2022 by cybersecurity firm Quarkslab. “An authenticated, local attacker could send maliciously crafted commands to a vulnerable TPM allowing access to sensitive data. In some cases, the attacker can also overwrite protected data in the TPM firmware. ” states Quarkslab.

Firmware 96

Firmware IoT Authentication Hacking 96

Security Affairs

FEBRUARY 28, 2024

“As early as 2022, APT28 actors had utilized compromised EdgeRouters to facilitate covert cyber operations against governments, militaries, and organizations around the world.” Since September 2022, Moobot botnet was spotted targeting vulnerable D-Link routers. Upgrade to the latest firmware version.

Energy and Utilities 90

Energy and Utilities Government Firewall Malware 90

eSecurity Planet

NOVEMBER 7, 2022

Take a Look at Top Threat Intelligence Platforms for 2022. Firmware Rootkit. A firmware rootkit uses device or platform firmware to create a persistent malware image in the router, network card, hard drive or the basic input/output system (BIOS). using strong authentication. performing regular security maintenance.

Firmware 114

Firmware Malware Antivirus Firewall 114

Security Affairs

JUNE 27, 2022

An attacker could exploit the flaw to trigger a denial-of-service (DoS) condition, disclose information, execute arbitrary code, and conduct other malicious activities. Two of these vulnerabilities, tracked as CVE-2022-31805 and CVE-2022-31806, have been rated critical (CVSS scores: 9.8), 7 as high risk, and 2 as medium risk.

Software 78

Software Manufacturing Firmware Risk 78

Security Affairs

JUNE 13, 2023

“For this reason, if the customer has SSL-VPN enabled, Fortinet is advising customers to take immediate action to upgrade to the most recent firmware release. The vulnerability was reported to Fortinet by the researcher Charles Fol and Dany Bach ( DDXhunter ) from Lexfo Security. .” states the report published by Fortinet.

Firewall 79

Firewall VPN Firmware Manufacturing 79

Security Affairs

MARCH 31, 2022

Bitdefender researchers discovered three security vulnerabilities in the popular Wyze Cam devices that can be exploited by threat actors to execute arbitrary code and access camera feeds. The vendor addressed the unauthenticated access to the content of the SD card with the release of firmware updates on January 29, 2022.

IoT 70

IoT Firmware Marketing Authentication 70

Security Affairs

MAY 8, 2023

The authenticity of the leaked private key was confirmed by Alex Matrosov, founder of firmware security firm Binarly. The availability of code signing keys can allow threat actors to sign malicious code that can be executed on targeted systems bypassing security measures in place. We are in the final!

Data breaches 75

Data breaches Ransomware Firmware Manufacturing 75

Security Affairs

APRIL 25, 2022

The alert includes indicators of compromise (IoCs) associated with BlackCat/ALPHV, as of mid-February 2022. The FBI is seeking any information that can be shared related to the operations of the BlackCat ransomware operation. Install updates/patch operating systems, software, and firmware as soon as updates/patches are released.

Ransomware 98

Ransomware Antivirus Passwords Malware 98

Security Affairs

MARCH 20, 2022

" — Chris Bing (@Bing_Chris) March 15, 2022. This week the European Union Aviation Safety Agency (EASA) has issued a Safety Information Bulletin to warn of intermittent Global Navigation Satellite Systems (GNSS) outages near Ukraine conflict areas amid the ongoing conflict. Not only cyber attacks.

Cyber Attacks 81

Cyber Attacks Digital transformation Firmware Internet 81

Security Affairs

APRIL 14, 2022

According to the advisory that was issued with the help of leading cybersecurity firms (Dragos, Mandiant, Microsoft, Palo Alto Networks, and Schneider Electric), nation-state hacking groups were able to hack multiple industrial systems using a new ICS-focused malware toolkit dubbed PIPEDREAM that was discovered in early 2022.

Passwords 107

Passwords Architecture Backups Cyber Attacks 107

Security Affairs

APRIL 19, 2023

is affected by multiple vulnerabilities that can be exploited by an authenticated, remote attacker to execute code on an affected system or cause vulnerable devices to reload. The agencies recommend updating to the latest firmware and switching from SNMP to NETCONF or RESTCONF for network management. through 12.4 through 15.6

Malware 80

Malware Firmware Government Education 80

Security Affairs

OCTOBER 22, 2022

The Daixin Team is a ransomware and data extortion group that has been active since at least June 2022. Below are the mitigations provided in the alert: Install updates for operating systems, software, and firmware as soon as they are released. Daixin Team also exfiltrated data from victim systems using Rclone and Ngrok tools.

Ransomware 65

Ransomware VPN Cybercrime Accountability 65

ForAllSecure

JUNE 8, 2022

At CanSecWest 2022, researcher Martin Herfurt announced a new tool, TeslaKee.com , which he hopes prevents wireless key attacks from happening. But the thing was from one firmware version to the next one, they introduced this kind of signal checking. With digital convenience there’s often a price. Because my talk was accepted.

Hacking 52

Hacking Manufacturing Encryption Wireless 52