Advertising, Firewall, Firmware and Internet

Multiple DDoS botnets were observed targeting Zyxel devices

Security Affairs

JULY 22, 2023

Fortinet FortiGuard Labs researchers warned of multiple DDoS botnets exploiting a vulnerability impacting multiple Zyxel firewalls. The cause of the vulnerability is the improper error message handling in Zyxel ZyWALL/USG series firmware versions 4.60 through 4.73, VPN series firmware versions 4.60 through 5.35. through 5.35.

DDOS

DDOS Firmware VPN Firewall

79 Netgear router models affected by a dangerous Zero-day

Security Affairs

JUNE 18, 2020

Security experts Adam Nichols from GRIMM and d4rkn3ss from the Vietnamese internet service provider VNPT have independently reported a severe unpatched security vulnerability that affects 79 Netgear router models. Nichols discovered that the vulnerability affects 758 different firmware versions that run on 79 Netgear routers.

Firmware

Firmware Internet Internet Advertising

P2P Weakness Exposes Millions of IoT Devices

Krebs on Security

APRIL 26, 2019

iLnkP2p is bundled with millions of Internet of Things (IoT) devices, including security cameras and Webcams, baby monitors, smart doorbells, and digital video recorders. Furthermore, even if software patches were issued, the likelihood of most users updating their device firmware is low.

IoT

IoT Firewall Manufacturing Computers and Electronics

New Ttint IoT botnet exploits two zero-days in Tenda routers

Security Affairs

OCTOBER 5, 2020

Unlike other IoT DDoS botnets, Ttint implements 12 remote access functions such as Socket5 proxy for router devices, tampering with router firewall and DNS settings, executing remote custom system commands. According to the experts, Tenda routers running a firmware version between AC9 to AC18 are vulnerable to the attack.

IoT

IoT Firmware DNS Advertising

A daily average of 80,000 printers exposed online via IPP

Security Affairs

JUNE 23, 2020

The Shadowserver Foundation is a nonprofit security organization working altruistically behind the scenes to make the Internet more secure for everyone. The researchers scanned the Internet for printers that are exposing their Internet Printing Protocol (IPP) port online. and printers (or print servers). . Pierluigi Paganini.

Internet

Internet Internet Firmware Advertising

DoS attack the caused disruption at US power utility exploited a known flaw

Security Affairs

SEPTEMBER 9, 2019

A DoS attack that caused disruptions at a power utility in the United States exploited a flaw in a firewall used in the facility. The incident took place earlier this year, threat actors exploited a known vulnerability in a firewall used by the affected facility to cause disruption. and 7 p.m., power grid ( Energywire , April 30).

Energy and Utilities

Energy and Utilities Firewall Firmware Advertising

Juniper Networks addressed many issues in its products

Security Affairs

JULY 10, 2020

Juniper Networks addressed several vulnerabilities in its firewalls, most of them can be exploited by attackers for denial-of-service (DoS) attacks. Some of the issues also affected third-party components, including OpenSSL, Intel firmware, Bouncy Castle, Java SE, Apache software, and others. Pierluigi Paganini.

Firmware

Firmware Advertising Firewall Internet

Some Zyxel devices can be hacked via DNS requests

Security Affairs

SEPTEMBER 4, 2019

“A DNS request can be made by an unauthenticated attacker to either spam a DNS service of a third party with requests that have a spoofed origin or probe whether domain names are present on the internal network behind the firewall,” reads the advisory published by the experts. ” reads the advisory. Pierluigi Paganini.

DNS

DNS Hacking Firmware Wireless

Attackers are hacking NSC Linear eMerge E3 building access systems to launch DDoS attacks

Security Affairs

FEBRUARY 3, 2020

L inear eMerge E3 smart building access systems designed by N ortek Security & Control (NSC) are affected by a severe vulnerability (CVE-2019-7256) that has yet to be fixed and attackers are actively scanning the internet for vulnerable devices. Passwords can be found in p roduct documentation and compiled lists available on the Internet.”

DDOS

DDOS Hacking Internet Internet

Millions of Xiongmai video surveillance devices can be easily hacked via cloud feature

Security Affairs

OCTOBER 10, 2018

Additionally, no firewall rules, port forwarding rules, or DDNS setup are required on the router, which makes this option convenient also for non-tech-savvy users.” The “P2P Cloud” feature bypasses firewalls and effectively allows remote connections into private networks. ” reads the report published by SEC Consult. !

Surveillance

Surveillance Hacking Firmware Manufacturing

A flaw in Rockwell Controller allows attackers to redirect users to malicious Sites

Security Affairs

APRIL 25, 2019

Rockwell has released firmware updates that address the vulnerability for the affected controllers. Below the recommendations published by Rockwell Automation to minimize the risk of exploitation of this vulnerability: Update to the latest available firmware revision that addresses the associated risk. Pierluigi Paganini.

Firmware

Firmware Social Engineering Advertising Malware

Zyxel addresses Zero-Day vulnerability in NAS devices

Security Affairs

FEBRUARY 25, 2020

A remote code execution vulnerability was identified in the weblogin.cgi program of Zyxel NAS products running firmware version 5.21 Do not leave the product directly exposed to the internet. If possible, connect it to a security router or firewall for additional protection,” Zyxel recommends. . and earlier. Pierluigi Paganini.

Authentication

Authentication Advertising Firmware Internet

Silex malware bricks thousands of IoT devices in a few hours

Security Affairs

JUNE 26, 2019

Cashdollar explained that the Silex malware trashes the storage of the infected devices, drops firewall rules and wipe network configurations before halting the system. The only way to recover infected devices is to manually reinstall the device’s firmware. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

IoT

IoT Malware Advertising Firmware

Key Reuse opens to attacks on IPsec IKE, Cisco, Huawei, ZyXEL products are affected

Security Affairs

AUGUST 14, 2018

” The experts focused their analysis on the impact of key reuse on Internet Protocol Security (IPsec). The cryptographic key for IPsec leverages the Internet Key Exchange (IKE) protocol, which has two versions, IKEv1 and IKEv2. According to the Huawei’s advisory , its firewall products are affected by the flaw.

Encryption

Encryption Authentication Internet Internet

CISA warns of critical flaws in Prima FlexAir access control system

Security Affairs

JULY 31, 2019

“To update to the latest firmware, each user should select the “Check for Upgrade” option in the “Centrals” menu in the GUI. Specifically, users should: Minimize network exposure for all control system devices and/or systems, and ensure that they are not accessible from the Internet. ” concludes the CISA advisory.

Backups

Backups Authentication Advertising Firmware

Experts hacked 28,000 unsecured printers to raise awareness of printer security issues

Security Affairs

AUGUST 27, 2020

To perform the experiment, we used Internet of Things (IoT) search engines to search for open devices that utilized common printer ports and protocols. After filtering out most of the false positives, we were left with more than 800,000 printers that had network printing features enabled and were accessible over the internet.

Hacking

Hacking IoT Firmware Internet

Types of Malware & Best Malware Protection Practices

eSecurity Planet

FEBRUARY 16, 2021

At its core, malware exploits existing network, device, or user vulnerabilities , posing as little a risk as annoying advertisements to the much more damaging demand for millions of dollars in ransom. Adware, also known as malvertising , is a type of malware that downloads or displays advertisements to the user interface.

Malware

Malware Adware Spyware Antivirus

Vulnerability Patching: How to Prioritize and Apply Patches

eSecurity Planet

NOVEMBER 18, 2022

The first priority will be to collect the advertised vulnerabilities. While this eliminates many headaches, it does not scan for misconfigurations and may not support other critical updates such as IT infrastructure (routers, firewalls, etc.), firmware (hard drives, drivers, etc.),

Firmware

Firmware Firewall Passwords Risk

Too much UPnP-enabled connected devices still vulnerable to cyber attacks

Security Affairs

MARCH 7, 2019

“The hackers behind it reportedly took advantage of poorly configured routers that had the Universal Plug and Play (UPnP) service enabled, which caused the routers to forward public ports to the private devices and be open to the public internet,” reads the analysis published by Yang. Pierluigi Paganini.

Cyber Attacks

Cyber Attacks Advertising Firmware Data collection

Cyber Security Roundup for June 2021

Security Boulevard

JUNE 1, 2021

The consumer watchdog examined 13 router models provided to customers by internet-service companies such as EE, Sky and Virgin Media, and found more than two-thirds had security flaws. a lack of firmware updates, important for security and performance. Achieving PCI DSS Compliant Firewalls within a Small Business.

Ransomware

Ransomware Passwords Scams Cyber Attacks

What is Malware? Definition, Purpose & Common Protections

eSecurity Planet

OCTOBER 21, 2022

Today, malware is a common threat to the devices and data of anyone who uses the Internet. Ransomware is one of the most virulent forms of malware on the modern Internet. Firmware rootkits are also known as “hardware rootkits.”. Programs being opened or accessing the Internet without your permission.

Malware

Malware Adware Spyware Antivirus

2024 State of Cybersecurity: Reports of More Threats & Prioritization Issues

eSecurity Planet

MAY 2, 2024

20% increase accesses of specific organizations advertised. Company instructions to keep hands off internal network traffic leads to internet service provider (ISP) suppression of only 1% of the 100,000 monthly outgoing DDoS attacks. 583% increase in Kerberoasting [password hash cracking] attacks.

Cybersecurity

Cybersecurity DDOS Penetration Testing Passwords

Advanced threat predictions for 2023

SecureList

NOVEMBER 14, 2022

In both cases, we described new UEFI firmware bootkits that managed to propagate malicious components from the deepest layers of the machine up to Windows’ user-land. The reason is simple: they represent huge software stacks that must support many protocols and have to be internet-facing to operate properly.

Firmware

Firmware Surveillance Mobile Telecommunications

Cyber Security Informer

Multiple DDoS botnets were observed targeting Zyxel devices

79 Netgear router models affected by a dangerous Zero-day

Trending Sources

P2P Weakness Exposes Millions of IoT Devices

New Ttint IoT botnet exploits two zero-days in Tenda routers

A daily average of 80,000 printers exposed online via IPP

DoS attack the caused disruption at US power utility exploited a known flaw

Juniper Networks addressed many issues in its products

Some Zyxel devices can be hacked via DNS requests

Attackers are hacking NSC Linear eMerge E3 building access systems to launch DDoS attacks

Millions of Xiongmai video surveillance devices can be easily hacked via cloud feature

A flaw in Rockwell Controller allows attackers to redirect users to malicious Sites

Zyxel addresses Zero-Day vulnerability in NAS devices

Silex malware bricks thousands of IoT devices in a few hours

Key Reuse opens to attacks on IPsec IKE, Cisco, Huawei, ZyXEL products are affected

CISA warns of critical flaws in Prima FlexAir access control system

Experts hacked 28,000 unsecured printers to raise awareness of printer security issues

Types of Malware & Best Malware Protection Practices

Vulnerability Patching: How to Prioritize and Apply Patches

Too much UPnP-enabled connected devices still vulnerable to cyber attacks

Cyber Security Roundup for June 2021

What is Malware? Definition, Purpose & Common Protections

2024 State of Cybersecurity: Reports of More Threats & Prioritization Issues

Advanced threat predictions for 2023

Stay Connected