Antivirus, Firmware and Information Security

BotenaGo botnet targets millions of IoT devices using 33 exploits

Security Affairs

NOVEMBER 11, 2021

Ax with firmware 1.04b12 and earlier CVE-2016-1555 Netgear WN604 before 3.3.3 CVE-2017-6077 NETGEAR DGN2200 devices with firmware through 10.0.0.50 CVE-2020-9054 Multiple ZyXEL network-attached storage (NAS) devices running firmware version 5.2, Affected products include: NAS326 before firmware V5.21(AAZF.7)C0 A2pvI042j1.d26m

IoT

IoT Firmware Malware Wireless

Ranzy Locker ransomware hit tens of US companies in 2021

Security Affairs

OCTOBER 26, 2021

Install and regularly update antivirus software on all hosts, and enable real time detection. Install updates/patch operating systems, software, and firmware as soon as updates/patches are released. Implement network segmentation, such that all machines on your network are not accessible from every other machine.

Ransomware

Ransomware Firmware Antivirus Accountability

BlackCat Ransomware gang breached over 60 orgs worldwide

Security Affairs

APRIL 25, 2022

Review antivirus logs for indications they were unexpectedly turned off. Implement a recovery plan to maintain and retain multiple copies of sensitive or proprietary data and servers in a physically separate, segmented, secure location (e.g., Install and regularly update antivirus and anti-malware software on all hosts.

Ransomware

Ransomware Antivirus Passwords Malware

Webinars

Human-Centered Cyber Security Training: Driving Real Impact on Security Culture

MORE WEBINARS

Counterfeit versions of popular mobile devices target WhatsApp and WhatsApp Business

Security Affairs

AUGUST 23, 2022

It allows a remote or local client to connect and operate in the “mysh” console application, which must first be installed on the device or initially present in its firmware. They also highlight the importance of using antivirus software and keeping OS up to date. Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini.

Mobile

Mobile Firmware Malware Wireless

Avoslocker ransomware gang targets US critical infrastructure

Security Affairs

MARCH 19, 2022

Install and regularly update antivirus software on all hosts, and enable real time detection. Install updates/patch operating systems, software, and firmware as soon as updates/patches are released. Only use secure networks and avoid using public Wi-Fi networks. Focus on cyber security awareness and training.

Ransomware

Ransomware DDOS Passwords Backups

NCSC warns of a surge in ransomware attacks on education institutions

Security Affairs

SEPTEMBER 20, 2020

Below the list of recommendations provided by the agency that includes the use of updated antivirus software and anti-phishing defense measures: centrally manage devices in order to only permit applications trusted by the enterprise to run on devices, using technologies including AppLocker , or from trusted app stores (or other trusted locations) (..)

Education

Education Ransomware Antivirus Backups

New Cring ransomware deployed targeting unpatched Fortinet VPN devices

Security Affairs

APRIL 7, 2021

. “The primary causes of the incident include the use of an outdated and vulnerable firmware version on the Fortigate VPN server (version 6.0.2 “The lack of timely antivirus database updates for the security solution used on attacked systems also played a key role, preventing the solution from detecting and blocking the threat.

VPN

VPN Ransomware Antivirus Firmware

Security Affairs newsletter Round 302

Security Affairs

FEBRUARY 21, 2021

If you want to receive the weekly Security Affairs Newsletter for free subscribe here. Pierluigi Paganini. SecurityAffairs – hacking, newsletter).

Firmware

Firmware DNS Data breaches Antivirus

BlackByte ransomware breached at least 3 US critical infrastructure organizations

Security Affairs

FEBRUARY 14, 2022

Install and regularly update antivirus software on all hosts, and enable real time detection. Install updates/patch operating systems, software, and firmware as soon as updates/patches are released. Implement network segmentation, such that all machines on your network are notaccessible from every other machine.

Ransomware

Ransomware Accountability Firmware Antivirus

FBI and CISA are warning of APT actors targeting Fortinet FortiOS servers

Security Affairs

APRIL 2, 2021

. • Implement a recovery plan to restore sensitive or proprietary data from a physically separate, segmented, secure location (e.g., Install updates/patch operating systems, software, and firmware as soon as updates/patches are released. • Install and regularly update antivirus and anti-malware software on all hosts.

Passwords

Passwords Government Firmware Accountability

Lemon Group gang pre-infected 9 million Android devices for fraudulent activities

Security Affairs

MAY 19, 2023

In March 2018, security researchers at Antivirus firm Dr. Web discovered that 42 models of low-cost Android smartphones are shipped with the Android.Triada.231 Threat actors compromised third-party software or the installation of malware-laced firmware. 231 banking malware. ” reads the analysis published by Trend Micro.

Mobile

Mobile Advertising Malware Cybercrime

US CISA and FBI publish joint alert on DarkSide ransomware

Security Affairs

MAY 13, 2021

Update software , including operating systems, applications, and firmware on IT network assets, in a timely manner. Set antivirus/antimalware programs to conduct regular scans of IT network assets using up-to-date signatures. Filter network traffic to prohibit ingress and egress communications with known malicious IP addresses.

Ransomware

Ransomware Healthcare Phishing Risk

Top 6 Rootkit Threats and How to Protect Yourself

eSecurity Planet

NOVEMBER 7, 2022

Any bugs or glitches in its programming leaves noticeable trails for antivirus software to track. Firmware Rootkit. A firmware rootkit uses device or platform firmware to create a persistent malware image in the router, network card, hard drive or the basic input/output system (BIOS). Looking for More About Malware?

Firmware

Firmware Malware Antivirus Firewall

Cyber Security Informer

BotenaGo botnet targets millions of IoT devices using 33 exploits

Ranzy Locker ransomware hit tens of US companies in 2021

Webinars

Trending Sources

BlackCat Ransomware gang breached over 60 orgs worldwide

Webinars

Counterfeit versions of popular mobile devices target WhatsApp and WhatsApp Business

Avoslocker ransomware gang targets US critical infrastructure

NCSC warns of a surge in ransomware attacks on education institutions

New Cring ransomware deployed targeting unpatched Fortinet VPN devices

Security Affairs newsletter Round 302

BlackByte ransomware breached at least 3 US critical infrastructure organizations

FBI and CISA are warning of APT actors targeting Fortinet FortiOS servers

Lemon Group gang pre-infected 9 million Android devices for fraudulent activities

US CISA and FBI publish joint alert on DarkSide ransomware

Top 6 Rootkit Threats and How to Protect Yourself

Stay Connected