Advertising, Authentication and Firmware

WAGO Device Manager Vulnerabilities Expose Critical Industrial Infrastructure to Remote Exploits

Penetration Testing

JUNE 17, 2025

The WAGO Device Manager is a configuration tool embedded in the firmware of WAGO’s industrial control systems (ICS). By crafting malicious scripts hosted on attacker-controlled domains, threat actors could silently exfiltrate system data without triggering standard authentication safeguards. respectively.

Firmware

Firmware Penetration Testing Manufacturing Surveillance

Aquabot variant v3 targets Mitel SIP phones

Security Affairs

JANUARY 29, 2025

In mid-July 2024, Mitel addressed the vulnerability with the release of firmware updates. The vendor warned that the exploitation of the flaw could allow an authenticated attacker with administrative privilege to conduct a command injection attack due to insufficient parameter sanitization during the boot process. . HF1 (R6.4.0.136).

DDOS

DDOS Firmware Malware Firewall

Triada strikes back

SecureList

APRIL 25, 2025

With time, the vulnerabilities were patched, and restrictions were added to the firmware. Attackers are leveraging this by embedding malicious software into Android device firmware. Attackers are now embedding a sophisticated multi-stage loader directly into device firmware. oat ) located in the same directory. db database.

Cryptocurrency

Cryptocurrency Malware Firmware Accountability

CVE-2025-5491: Acer Control Center Bug Allows Remote Code Execution as NT AUTHORITYSYSTEM

Penetration Testing

JUNE 12, 2025

Unfortunately, this pipe is misconfigured to allow remote access without authentication, giving attackers an open door to abuse one of the service’s more dangerous features: “ One feature of the service is to invoke arbitrary executables as NT AUTHORITYSYSTEM. You can find the latest version on our Drivers and Manuals site.

Penetration Testing

Penetration Testing Firmware Advertising DDOS

Privacy Roundup: Week 7 of Year 2025

Security Boulevard

FEBRUARY 17, 2025

The research also shows that reCAPTCHA relies on fingerprinting (collecting "user agent data and other identifying information") and shares this data with advertisers. Vulnerabilities and Malware Primarily includes severe and exploited vulnerabilities in devices or software used by end users (ex: a major router firmware flaw).

Surveillance

Surveillance Data breaches VPN Malware

Privacy Roundup: Week 11 of Year 2025

Security Boulevard

MARCH 17, 2025

The CEO claims that thanks to their "CoreAI" product/service/feature, they can leverage extreme personalized (and prediction) advertising for 91 percent of adults around the world. Kagi Search introduces Privacy Pass authentication AlternativeTo Kagi officially rolls out Privacy Pass support for its Android app.

Surveillance

Surveillance Data breaches Spyware Malware

Wyze wants to keep prying eyes away from your cameras with this new feature

Zero Day

JUNE 20, 2025

In an announcement Tuesday about its new VerifiedView program, Wyze explained that it already uses "strong protections like password requirements, two-factor authentication , cloud security, encryption, tools to detect suspicious logins, and much more." Privacy Policy | | Cookie Settings | Advertise | Terms of Use

Password Management

Password Management Small Business Artificial Intelligence Digital transformation

YouTube Shorts to Integrate Veo 3 AI: Text-to-Video Creation Arriving This Summer

Penetration Testing

JUNE 18, 2025

As AI tools become further embedded in creative platforms, questions arise about content quality and authenticity. With Veo 3’s arrival, YouTube Shorts stands on the brink of a creative transformation—shifting from the authenticity of personal storytelling to the mass production power of AI-generated content.

Artificial Intelligence

Artificial Intelligence Penetration Testing Technology Authentication

5 Chromecast features that maximize your TV's potential (and a smart home hack)

Zero Day

JUNE 23, 2025

Indeed, we follow strict guidelines that ensure our editorial content is never influenced by advertisers. Check out Chromecast Preview The Chromecast Preview Program is a user-opt-in channel that updates your Google device with the latest firmware version before it's made broadly available. All rights reserved.

Hacking

Hacking Password Management Small Business Passwords

Unsigned Firmware running on peripherals could expose Windows, Linux systems to hack

Security Affairs

FEBRUARY 18, 2020

Peripheral devices with unsigned firmware can expose Windows and Linux machines to hack, warn experts from firmware security firm Eclypsium. An attacker could exploit the lack of checks to execute malicious firmware and perform malicious actions on both Windows and Linux systems, such as the installation of persistent backdoors.

Firmware

Firmware Hacking Authentication Advertising

Intel addresses High-Severity flaws in NUC Firmware and other tools

Security Affairs

AUGUST 18, 2019

Intel released security updates to address high-severity vulnerabilities in NUC firmware, the Processor Identification Utility, and the Computing Improvement Program. Intel Patch Tuesday for August 2019 addressed high-severity vulnerabilities in NUC firmware, Processor Identification Utility, and Computing Improvement Program.

Firmware

Firmware Authentication Advertising Hacking

Netgear fixes a critical RCE that could allow to takeover Flagship Nighthawk routers

Security Affairs

MARCH 8, 2020

Netgear has addressed a critical remote code execution vulnerability that could be exploited by an unauthenticated attacker to take over AC Router Nighthawk (R7800) hardware running firmware versions prior to 1.0.2.68. NETGEAR strongly recommends that you download the latest firmware as soon as possible.” Pierluigi Paganini.

Firmware

Firmware Wireless Advertising Authentication

CVE-2019-0090 flaw affects Intel Chips released in the last 5 years

Security Affairs

MARCH 7, 2020

The CVE-2019-0090 vulnerability affects the firmware running on the ROM of the Intel’s Converged Security and Management Engine (CSME). Intel CSME is responsible for initial authentication of Intel-based systems by loading and verifying all other firmware for modern platforms.” x, SPS_E3_05.00.04.027.0.

Firmware

Firmware Technology Advertising Authentication

P2P Weakness Exposes Millions of IoT Devices

Krebs on Security

APRIL 26, 2019

But according to an in-depth analysis shared with KrebsOnSecurity by security researcher Paul Marrapese , iLnkP2P devices offer no authentication or encryption and can be easily enumerated, allowing potential attackers to establish a direct connection to these devices while bypassing any firewall restrictions.

IoT

IoT Firewall Manufacturing Computers and Electronics

Researchers warn of QNAP NAS attacks in the wild

Security Affairs

AUGUST 31, 2020

Hackers target QNAP NAS devices running multiple firmware versions vulnerable to a remote code execution (RCE) flaw addressed by the vendor 3 years ago. QNAP addressed the vulnerability with the release of firmware version 4.3.3 Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. on July 21, 2017.

Firmware

Firmware Advertising Malware Internet

Second-ever UEFI rootkit used in North Korea-themed attacks

Security Affairs

OCTOBER 5, 2020

The experts were investigating several suspicious UEFI firmware images when discovered four components, some of which were borrowing the source code a Hacking Team spyware. The firmware malware is based on code associated with HackingTeam’s VectorEDK bootkit, with minor changes. ” concludes the report. Pierluigi Paganini.

Firmware

Firmware Spyware Surveillance Hacking

D-Link addressed 5 flaws on some router models, some of them reached EoL

Security Affairs

JULY 25, 2020

The flaws include reflected Cross-Site Scripting (XSS), buffer overflows, bypassing authentication issues, and arbitrary code execution bugs. The vendor pointed out that DAP-1522 and DIR-816L models that have reached their “end of support” phase, this means that these devices running firmware versions v1.42 (and below) and v12.06.B09

Firmware

Firmware Advertising Authentication Hacking

Expert found multiple critical issues in MoFi routers

Security Affairs

SEPTEMBER 8, 2020

“The authentication function contains undocumented code which provides the ability to authenticate as root without having to know the actual root password. An adversary with the private key can remotely authenticate to the management interface as root.” ” reads the advisory published by the expert.

Firmware

Firmware Authentication Wireless Advertising

Expert found a hardcoded SSH Key in Fortinet SIEM appliances

Security Affairs

JANUARY 20, 2020

An attacker with this key can successfully authenticate as this user to the FortiSIEM Supervisor.” While the user’s shell is limited to running the /opt/phoenix/ phscripts /bin/ tunnelshell script, SSH authentication still succeeds.” Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Authentication

Authentication Firmware Advertising Firewall

Researchers found allegedly intentional backdoors in FTTH devices from Chinese vendor C-Data

Security Affairs

JULY 10, 2020

The backdoor accounts in the firmware of 29 FTTH Optical Line Termination (OLT) devices from popular vendor C-Data. The security duo, composed of Pierre Kim and Alexandre Torres, disclosed seven vulnerabilities in the firmware of FTTH OLT devices manufactured by C-Data. ” reads the analysis published by the experts.

Firmware

Firmware Accountability Advertising Manufacturing

Intel addresses high severity flaw in Processor Diagnostic Tool

Security Affairs

JULY 11, 2019

may allow an authenticated user to potentially enable escalation of privilege, information disclosure or denial of service via local access.” The second vulnerability addressed by Intel affects SSD DC S4500/S4600 series firmware, it could be exploited by an attacker with physical access for privilege escalation.

Firmware

Firmware Advertising Authentication Hacking

Both Mirai and Hoaxcalls IoT botnets target Symantec Web Gateways

Security Affairs

MAY 19, 2020

Palo Alto Networks Unit 42 researchers observed both the Mirai and Hoaxcalls botnets using an exploit for a post-authentication Remote Code Execution vulnerability in legacy Symantec Web Gateways 5.0.2.8. Experts note that the exploit is only effective for authenticated sessions and the affected devices are End of Life (EOL) from 2012.

IoT

IoT DDOS Authentication Firmware

QSnatch malware infected over 62,000 QNAP NAS Devices

Security Affairs

JULY 28, 2020

CGI password logger This installs a fake version of the device admin login page, logging successful authentications and passing them to the legitimate login page. The experts observed that once a device has been infected, the malicious code can prevent the installation of firmware updates.

Malware

Malware Firmware Advertising Manufacturing

Fortinet removed hardcoded SSH keys and database backdoors from FortiSIEM

Security Affairs

JANUARY 27, 2020

An attacker with this key can successfully authenticate as this user to the FortiSIEM Supervisor.” While the user’s shell is limited to running the /opt/phoenix/phscripts/bin/tunnelshell script, SSH authentication still succeeds.”. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. reads the advisory.

Firmware

Firmware Advertising Authentication Passwords

Cisco ASA is affacted by a privilege escalation flaw. Patch it now!

Security Affairs

DECEMBER 23, 2018

The flaw was discovered by experts at Tenable that explained that an authenticated remote unprivileged user can change or download the running configuration or replace the appliance firmware where they shouldn’t. In particular, the aaa authentication http console {LOCAL | <aaa-server>} command must be present,” Cisco concludes.

Firmware

Firmware Authentication Software Advertising

Yubico is replacing for free YubiKey FIPS devices due to security weakness

Security Affairs

JUNE 14, 2019

of the firmware. The weakness impacts PIV smart card applications, Universal 2nd Factor (U2F) authentication, OATH one-time passwords, and OpenPGP. “An issue exists in the YubiKey FIPS Series devices with firmware version 4.4.2 there is no released firmware version 4.4.3) that was certified at the end of April.

Firmware

Firmware Advertising Authentication Passwords

USBAnywhere BMC flaws expose Supermicro servers to hack

Security Affairs

SEPTEMBER 3, 2019

Researchers at firmware security firm Eclypsium discovered multiple vulnerabilities referred as USBAnywhere that could be exploited to potentially allow an attacker to take over the baseboard management controller (BMC) for three different models of Supermicro server boards: the X9, X10, and X11. ” reads the post published by Eclypsium.

Hacking

Hacking Firmware Media Authentication

A daily average of 80,000 printers exposed online via IPP

Security Affairs

JUNE 23, 2020

Unlike other printer management protocols, the IPP protocol supports multiple security features, including authentication and encryption, but evidently organizations don’t use them. This info includes printer names, locations, models, firmware versions, organization names, and even WiFi network names. Pierluigi Paganini.

Internet

Internet Internet Firmware Advertising

GhostDNS malware already infected over 100K+ devices and targets 70+ different types of home routers

Security Affairs

OCTOBER 1, 2018

“Just like the regular dnschanger , this campaign attempts to guess the password on the router’s web authentication page or bypass the authentication through the dnscfg. Js DNSChanger is written in JavaScript and includes 10 attack scripts designed to infect 6 routers or firmware packages. Pierluigi Paganini.

DNS

DNS Malware Firmware Phishing

Critical unfixed flaws affect ABB Safety PLC Gateways

Security Affairs

DECEMBER 18, 2018

Security experts at Applied Risk are affected by potentially serious flaws and the bad news is that the vendor will not release firmware updates because the impacted products have reached the end of life. ABB also published separate advisories for the missing authentication and XSS vulnerabilities.

Firmware

Firmware Advertising Manufacturing Authentication

Security Affairs newsletter Round 268

Security Affairs

JUNE 14, 2020

Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Firmware

Firmware Advertising Ransomware Hacking

Infecting Canon EOS DSLR camera with ransomware over the air

Security Affairs

AUGUST 12, 2019

Searching online the expert first found an encrypted firmware, he found on a forum a Portable ROM Dumper , (a custom firmware update file that once loaded, dumps the memory of the camera into the SD Card) that allowed him to dump the camera’s firmware and load it into his disassembler (IDA Pro). Pierluigi Paganini.

Ransomware

Ransomware Firmware Wireless Encryption

3.5m IP cameras exposed, with US in the lead

Security Affairs

DECEMBER 14, 2022

While the default security settings have improved over the review period, some popular brands either offer default passwords or no authentication, meaning anyone can spy on the spies. It is worrying that all analyzed brands have at least some models that allow users to keep default passwords or have no authentication setup whatsoever.

Surveillance

Surveillance Manufacturing Internet Internet

Hacker leaks passwords for 900+ Pulse Secure VPN enterprise servers

Security Affairs

AUGUST 5, 2020

ZDNet has obtained a copy of the list with the help of threat intelligence firm KELA and verified confirmed the authenticity of the data. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. ” reported ZDNet.

VPN

VPN Passwords Banking Firmware

Thrangrycat flaw could allow compromising millions of Cisco devices

Security Affairs

MAY 14, 2019

. “ A vulnerability in the logic that handles access control to one of the hardware components in Cisco’s proprietary Secure Boot implementation could allow an authenticated, local attacker to write a modified firmware image to the component.” Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

Firmware

Firmware Authentication Software Advertising

Cisco addresses critical issues in IP Phones and UCS Director

Security Affairs

APRIL 17, 2020

The issue affects the following Cisco products if they have web access enabled and are running a firmware release earlier than the first fixed release for that device: IP Phone 7811, 7821, 7841, and 7861 Desktop Phones IP Phone 8811, 8841, 8845, 8851, 8861, and 8865 Desktop Phones Unified IP Conference Phone 8831 Wireless IP Phone 8821 and 8821-EX.

Big data

Big data Wireless Firmware Advertising

Flaws in several self-encrypting SSDs allows attackers to decrypt data they contain

Security Affairs

NOVEMBER 6, 2018

The flaws were discovered by researchers Carlo Meijer and Bernard van Gastel at Radboud University in the Netherlands, the duo discovered that it is possible to bypass password-based authentication to access to encrypted data stored on the drives. Anyway, an attacker can reprogram the firmware to ignore the password and use the DEK.

Encryption

Encryption Firmware Passwords Advertising

Experts found 9 NAS flaws that expose LenovoEMC, Iomega Devices to hack

Security Affairs

OCTOBER 3, 2018

A typical attack scenario to gain this information sees attackers to luring an authenticated NAS user by tricking it into visiting a specially crafted malicious website. Lenovo confirmed that firmware versions 4.1.402.34662 and earlier are vulnerable, users have to download firmware version 4.1.404.34716 (or later).

Hacking

Hacking Firmware Advertising Backups

D-Link router models affected by remote code execution issue that will not be fixed

Security Affairs

OCTOBER 7, 2019

According to the Fortinet, the vulnerability impacts D-Link firmware in the DIR-655, DIR-866L, DIR-652, and DHP-1565 router families. We rated this as a critical issue since the vulnerability can be triggered remotely without authentication.” “The vulnerability begins with a bad authentication check.

Authentication

Authentication Firmware Advertising Hacking

Mukashi, the new Mirai variant that targets Zyxel NAS

Security Affairs

MARCH 21, 2020

Multiple, if not all, Zyxel NAS products running firmware versions up to 5.21 are vulnerable to this pre-authentication command injection vulnerability. ZyXEL NAS devices achieve authentication by using the weblogin.cgi CGI executable. ” ~ Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

DDOS

DDOS Authentication Advertising Firmware

Tenable experts found 15 flaws in wireless presentation systems

Security Affairs

MAY 2, 2019

The issues, including a hardcoded session ID, allow unauthenticated, remote attacker to stop, start, and disconnect any screen sharing session due to insufficient authentication checking in the moderator controls. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Wireless

Wireless Firmware Advertising Authentication

Maze ransomware operators claim to have breached LG Electronics

Security Affairs

JUNE 25, 2020

“One of the screenshots seems to consist of LG Electronics official firmware or software update releases that assist their hardware products to work more efficiently.” Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

Computers and Electronics

Computers and Electronics Ransomware Mobile Telecommunications

Intel investigates security breach after the leak of 20GB of internal documents

Security Affairs

AUGUST 7, 2020

Several media outlets independently analyzed the data leak and verified the authenticity of the data. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. ” reported ZDNet. Pierluigi Paganini.

Firmware

Firmware Advertising Hacking Engineering

TP-Link fixes 2 Remote Code Execution flaws in TL-R600VPN SOHO Router and other issues

Security Affairs

NOVEMBER 20, 2018

The lack of proper input sanitization can be exploited without authentication to trigger DoS conditions and leak server information. Talos experts explained that parsing errors require an authenticated session for exploitation, a circumstance that can lead to remote code execution under the context of HTTPD. “If Pierluigi Paganini.

Authentication

Authentication Firmware Advertising Hacking

WAGO Device Manager Vulnerabilities Expose Critical Industrial Infrastructure to Remote Exploits

Aquabot variant v3 targets Mitel SIP phones

Trending Sources

Triada strikes back

CVE-2025-5491: Acer Control Center Bug Allows Remote Code Execution as NT AUTHORITYSYSTEM

Privacy Roundup: Week 7 of Year 2025

Privacy Roundup: Week 11 of Year 2025

Wyze wants to keep prying eyes away from your cameras with this new feature

YouTube Shorts to Integrate Veo 3 AI: Text-to-Video Creation Arriving This Summer

5 Chromecast features that maximize your TV's potential (and a smart home hack)

Unsigned Firmware running on peripherals could expose Windows, Linux systems to hack

Intel addresses High-Severity flaws in NUC Firmware and other tools

Netgear fixes a critical RCE that could allow to takeover Flagship Nighthawk routers

CVE-2019-0090 flaw affects Intel Chips released in the last 5 years

P2P Weakness Exposes Millions of IoT Devices

Researchers warn of QNAP NAS attacks in the wild

Second-ever UEFI rootkit used in North Korea-themed attacks

D-Link addressed 5 flaws on some router models, some of them reached EoL

Expert found multiple critical issues in MoFi routers

Expert found a hardcoded SSH Key in Fortinet SIEM appliances

Researchers found allegedly intentional backdoors in FTTH devices from Chinese vendor C-Data

Intel addresses high severity flaw in Processor Diagnostic Tool

Both Mirai and Hoaxcalls IoT botnets target Symantec Web Gateways

QSnatch malware infected over 62,000 QNAP NAS Devices

Fortinet removed hardcoded SSH keys and database backdoors from FortiSIEM

Cisco ASA is affacted by a privilege escalation flaw. Patch it now!

Yubico is replacing for free YubiKey FIPS devices due to security weakness

USBAnywhere BMC flaws expose Supermicro servers to hack

A daily average of 80,000 printers exposed online via IPP

GhostDNS malware already infected over 100K+ devices and targets 70+ different types of home routers

Critical unfixed flaws affect ABB Safety PLC Gateways

Security Affairs newsletter Round 268

Infecting Canon EOS DSLR camera with ransomware over the air

3.5m IP cameras exposed, with US in the lead

Hacker leaks passwords for 900+ Pulse Secure VPN enterprise servers

Thrangrycat flaw could allow compromising millions of Cisco devices

Cisco addresses critical issues in IP Phones and UCS Director

Flaws in several self-encrypting SSDs allows attackers to decrypt data they contain

Experts found 9 NAS flaws that expose LenovoEMC, Iomega Devices to hack

D-Link router models affected by remote code execution issue that will not be fixed

Mukashi, the new Mirai variant that targets Zyxel NAS

Tenable experts found 15 flaws in wireless presentation systems

Maze ransomware operators claim to have breached LG Electronics

Intel investigates security breach after the leak of 20GB of internal documents

TP-Link fixes 2 Remote Code Execution flaws in TL-R600VPN SOHO Router and other issues

Stay Connected