Authentication, Firmware, Passwords and Software

MITRE, CISA Reveal Dangerous Hardware & Software Vulnerabilities

eSecurity Planet

NOVEMBER 4, 2021

According to MITRE, “Because hardware is not patchable as easily as software, any flaw discovered after release and production typically cannot be fixed without a recall of the product.”. CWE-1277 : Firmware Not Updateable – firmware exploitation exposes the victim to a permanent risk without any possibility to patch weaknesses.

Software

Software Firmware Computers and Electronics Risk

D-Link issues beta hotfix for multiple flaws in DIR-3040 routers

Security Affairs

JULY 17, 2021

Network equipment vendor D-Link has released a firmware hotfix to fix multiple vulnerabilities in the DIR-3040 AC3000-based wireless internet router. Network equipment vendor D-Link has released a firmware hotfix to address multiple vulnerabilities affecting the DIR-3040 AC3000-based wireless internet router.

Firmware

Firmware Wireless Passwords Internet

Be aware of exposure of sensitive data on Wi-Fi settings for Canon inkjet printers

Security Affairs

AUGUST 1, 2023

The information stored in a Canon printer depends on the specific model, however, almost any model stores the network SSID, the password, network type (WPA3, WEP, etc.), Set up strong authentication mechanisms, such as complex passwords or use multi-factor authentication (MFA) for printer access.

Wireless

Wireless Firmware Passwords Authentication

P2P Weakness Exposes Millions of IoT Devices

Krebs on Security

APRIL 26, 2019

A map showing the distribution of some 2 million iLinkP2P-enabled devices that are vulnerable to eavesdropping, password theft and possibly remote compromise, according to new research. The security flaws involve iLnkP2P , software developed by China-based Shenzhen Yunni Technology.

IoT

IoT Firewall Manufacturing Computers and Electronics

Multiple flaws in CODESYS V3 SDK could lead to RCE or DoS?

Security Affairs

AUGUST 13, 2023

Microsoft Threat Intelligence researchers discovered 16 high-severity vulnerabilities, collectively tracked as CoDe16 , in the CODESYS V3 software development kit (SDK). Check with the device manufacturers for available patches and update the device firmware to version to 3.5.19.0 ” continues the report.

Authentication

Authentication Firmware Hacking Passwords

CISA and FBI issue alert about Zeppelin ransomware

Malwarebytes

AUGUST 16, 2022

Authentication. Require all accounts with password logins to meet the required standards for developing and managing password policies. Require multifactor authentication wherever you can—particularly for webmail, VPNs, and critical systems. Store passwords using industry best practice password hashing functions.

Ransomware

Ransomware Backups Passwords Authentication

The High-Stakes Game of Ensuring IoMT Device Security

SecureWorld News

FEBRUARY 17, 2024

Being constantly connected to the internet, they are either protected by basic passwords or, in some cases, have no password protection at all. When multiple devices are interconnected into one network, there is often a vulnerable point in this network—typically, a device with less sophisticated and secure software or firmware.

Healthcare

Healthcare Manufacturing Internet Internet

SonicWall warns users of “imminent ransomware campaign”

Malwarebytes

JULY 15, 2021

The exploitation targets a known vulnerability that has been patched in newer versions of SonicWall firmware. x versions of the firmware. x firmware. x firmware versions. The notice mentions the following products along with recommended actions: SRA 4600/1600 (EOL 2019) disconnect immediately and reset passwords.

Ransomware

Ransomware Firmware VPN Firewall

Nine flaws in CyberPower and Dataprobe solutions expose data centers to hacking

Security Affairs

AUGUST 13, 2023

CVE-2023-3267: OS Command Injection (Authenticated RCE; CVSS 7.5) CVE-2023-3260: OS Command Injection (Authenticated RCE; CVSS 7.2) CVE-2023-3263: Authentication Bypass by Alternate Name (Auth Bypass; CVSS 7.5) of PowerPanel Enterprise software and version 1.44.08042023 of the Dataprobe iBoot PDU firmware.

Hacking

Hacking Firmware Authentication Software

Cisco Warns of Multiple Flaws in Small Business Series Switches

eSecurity Planet

MAY 18, 2023

Despite the severity of the flaws, Cisco says the last three products in the list above won’t be covered by software updates or by workarounds because they’ve entered the end-of-life process. “In addition, a software release that is affected by one of the vulnerabilities may not be affected by the other vulnerabilities.”

Small Business

Small Business Firmware Ransomware Software

Beyond the Office: Securing Home Devices and Networks Against Corporate Breaches

SecureWorld News

OCTOBER 8, 2023

Let devices go into sleep mode to allow for automatic software updates. Even harmless details, such as pet names or birthplaces, can be used by hackers to reset passwords. Additionally, be cautious when adding new friends; verify their authenticity through known offline connections. Opt for strong, hard-to-crack passwords.

Firmware

Firmware IoT Accountability Passwords

Defending Against Misconfigured MFA & PrintNightmare Vulnerabilities

eSecurity Planet

MARCH 21, 2022

Using misconfigured multi-factor authentication (MFA) and an unpatched Windows vulnerability, Russian state-sponsored hackers were able to breach a non-governmental organization (NGO) and escalate privileges, the Cybersecurity and Infrastructure Security Agency (CISA) and the FBI revealed last week. Also read: Best Patch Management Software.

VPN

VPN Accountability Authentication Passwords

An educational robot security research

SecureList

FEBRUARY 27, 2024

Upon initial setup and internet connection, the robot prompts for a software update to the latest version and will not function without one. However, we decided not to update the toy immediately in order to explore what could be extracted from the older firmware version. This was the first security-related issue we discovered.

Education

Education Manufacturing Firmware Internet

Half of EDR Tools, Organizations Vulnerable to Clop Ransomware: Researchers

eSecurity Planet

JUNE 30, 2023

Cymulate ran 3,107 assessments across 340 organizations recently to see if security controls were adequate against the Clop (sometimes called “Cl0p” with a zero) ransomware group’s exploitation of a MOVEit software vulnerability ( CVE-2023-34362 ). Endpoint Security: Install and update antivirus software on all hosts.

Ransomware

Ransomware Backups Passwords Software

IoT Unravelled Part 3: Security

Troy Hunt

NOVEMBER 25, 2020

I also looked at custom firmware and soldering and why, to my mind, that was a path I didn't need to go down at this time. I can't blame this on the teddy bears themselves, rather the fact that the MongoDB holding all the collected data was left publicly facing without a password. IoT firmware should be self-healing.

IoT

IoT Firmware Risk Manufacturing

Avoslocker ransomware gang targets US critical infrastructure

Security Affairs

MARCH 19, 2022

Regularly back up data, password protect backup copies offline. Install and regularly update antivirus software on all hosts, and enable real time detection. Install updates/patch operating systems, software, and firmware as soon as updates/patches are released. Use multifactor authentication where possible.

Ransomware

Ransomware DDOS Passwords Backups

FBI warns of ransomware attacks targeting the food and agriculture sector

Security Affairs

SEPTEMBER 3, 2021

The FBI provided the following mitigations to protect against ransomware attacks: Regularly back up data, air gap, and password protect backup copies offline. Install updates/patch operating systems, software, and firmware as soon as they are released. Use multifactor authentication with strong pass phrases where possible.

Ransomware

Ransomware Passwords Backups Firmware

Internet safety tips for kids and teens: A comprehensive guide for the modern parent

Malwarebytes

SEPTEMBER 21, 2021

Show them these tips: Never use the same password twice. And if your child uses the same password across multiple accounts, when one gets breached they are all vulnerable. And if your child uses the same password across multiple accounts, when one gets breached they are all vulnerable. This is where a password manager comes in.

Internet

Internet Internet Passwords Password Management

Warning issued about Vice Society ransomware targeting the education sector

Malwarebytes

SEPTEMBER 7, 2022

Authentication. Require all accounts with password logins to meet the required standards for developing and managing password policies: Require multifactor authentication wherever you can—particularly for webmail, VPNs, and critical systems. Store passwords using industry best practice password hashing functions.

Education

Education Ransomware Backups Passwords

Patch now! Netgear fixes serious smart switch vulnerabilities

Malwarebytes

SEPTEMBER 7, 2021

In a security advisory , NetGear has announced it has fixed three vulnerabilities in firmware updates for several network devices. The CVSS standards are used to help security researchers, software users, and vulnerability tracking organizations measure and report on the severity of vulnerabilities. Draconian Fear. by NetGear.

Firmware

Firmware Passwords Authentication Internet

How to Configure a Router to Use WPA2 in 7 Easy Steps

eSecurity Planet

MARCH 3, 2023

The typical username and password for Wi-Fi routers is “admin” for both, but you may need to search online or contact your ISP if that doesn’t work. And while you’re in there, update that password to something a little less hackable, possibly saving the new one in a password manager.

Wireless

Wireless Encryption Passwords IoT

Ranzy Locker ransomware hit tens of US companies in 2021

Security Affairs

OCTOBER 26, 2021

Below are the recommended mitigations included in the alert: Implement regular backups of all data to be stored as air gapped, password protected copies offline. Install and regularly update antivirus software on all hosts, and enable real time detection. Use double authentication when logging into accounts or services.

Ransomware

Ransomware Firmware Antivirus Accountability

FBI published a flash alert on Mamba Ransomware attacks

Security Affairs

MARCH 26, 2021

“Mamba ransomware weaponizes DiskCryptor—an open source full disk encryption software— to restrict victim access by encrypting an entire drive, including the operating system. Require administrator credentials to install software. • Require administrator credentials to install software. • Implement network segmentation.

Ransomware

Ransomware Encryption Passwords Malware

BlackCat Ransomware gang breached over 60 orgs worldwide

Security Affairs

APRIL 25, 2022

Regularly back up data, air gap, and password-protect backup copies offline. Require administrator credentials to install software. Install updates/patch operating systems, software, and firmware as soon as updates/patches are released. Use multifactor authentication where possible.

Ransomware

Ransomware Antivirus Passwords Malware

"In our modern world, countless applications rely on radio frequency elements" - an Interview with Larbi Ouiyzme

Pen Test

OCTOBER 12, 2023

About the Author: Larbi OUIYZME Cybersecurity Consultant and Licensed Ham Radio Operator since 1988 with prefix CN8FF, deeply passionate about RF measurement, antennas, satellites, Software-defined radio, Digital Mobile Radio and RF Pentesting. What are the common firmware and software vulnerabilities in RF devices that can be exploited?

Encryption

Encryption Firmware Surveillance Technology

Russia-linked threats actors exploited default MFA protocol and PrintNightmare bug to compromise NGO cloud

Security Affairs

MARCH 16, 2022

In order to compromise the target network, the attackers conducted a brute-force password guessing attack against an un-enrolled and inactive account. Update software, including operating systems, applications, and firmware on IT network assets in a timely manner. Require all accounts with password logins (e.g.,

Accountability

Accountability Passwords Authentication Firmware

USBAnywhere BMC flaws expose Supermicro servers to hack

Security Affairs

SEPTEMBER 3, 2019

Researchers at firmware security firm Eclypsium discovered multiple vulnerabilities referred as USBAnywhere that could be exploited to potentially allow an attacker to take over the baseboard management controller (BMC) for three different models of Supermicro server boards: the X9, X10, and X11. ” reads the post published by Eclypsium.

Hacking

Hacking Firmware Media Authentication

A bug is about to confuse a lot of computers by turning back time 20 years

Malwarebytes

OCTOBER 22, 2021

Authentication mechanisms such as Time-based One-Time Password (TOTP) and Kerberos also rely heavily on time. As such, should there be a severe mismatch in time, users would not be able to authenticate and gain access to systems. The same would happen in cases where authentication relies on cookies. Mitigation.

Authentication

Authentication System Administration Firmware Passwords

For remote workforces, don’t overlook printer security

SC Magazine

MARCH 23, 2021

A robust cloud-based print management software solution that’s secure by design makes it easy to manage device configuration for a fleet of printers across a network – scalable across an organization to thousands of devices. Manual configuration of devices can lead to problems with inconsistent settings and firmware levels.

Firmware

Firmware Digital transformation Passwords Software

Bad Luck: BlackCat Ransomware Bulletin

Security Boulevard

MAY 9, 2022

Regularly back up data, air gap, and password protect backup copies offline. Require administrator credentials to install software. Install updates/patch operating systems, software, and firmware as soon as updates/patches are released. Use multifactor authentication where possible.

Ransomware

Ransomware Antivirus Backups Passwords

FBI warns of increase in PYSA ransomware attacks targeting education

Malwarebytes

MARCH 17, 2021

To prevent attacks: Install security updates for operating systems, software, and firmware as soon as they are released. Use multi-factor authentication wherever possible. Avoid reusing passwords for different accounts and implement the shortest acceptable timeframe for password changes.

Education

Education Ransomware Phishing Passwords

Remotely Accessing Secure Kali Pi

Kali Linux

NOVEMBER 27, 2022

To enable wireless support, we need to find: The kernel Wi-Fi modules that need to be in the initramfs (Depends on hardware) The Wi-Fi firmware files that need to be in the initramfs (Depends on hardware) The Wireless interface name (Kali defaults to: wlan0 ) Additional packages to increase functionally. bin firmware: brcm/brcmfmac*-sdio.*.txt

Firmware

Firmware Wireless Passwords VPN

NSA, CISA Release Guidance for Choosing and Hardening VPNs

eSecurity Planet

OCTOBER 1, 2021

Because of VPNs’ vulnerabilities – a recent example involved a massive leak of Fortinet users’ passwords – a number of security vendors have been pushing zero trust network access as a potential replacement for VPNs. Use multi-factor authentication and choose products that are compatible with the credentials you’ll be using.

VPN

VPN Authentication Passwords Software

FBI warns of ransomware threat to food and agriculture

Malwarebytes

SEPTEMBER 3, 2021

The FBI notice includes the following recommendations: Regularly back up data, air gap, and password protect backup copies offline. Install updates/patch operating systems, software, and firmware as soon as they are released. Use multi-factor authentication with strong pass phrases where possible.

Ransomware

Ransomware Manufacturing Passwords Internet

Wireless Security: WEP, WPA, WPA2 and WPA3 Explained

eSecurity Planet

MARCH 1, 2023

To prevent unwanted access and protect data in transit, wireless connections must be secured with strong authentication procedures, encryption protocols, access control rules, intrusion detection and prevention systems, and other security measures. As a result, wireless networks are prone to eavesdropping, illegal access and theft.

Wireless

Wireless Encryption Authentication IoT

PYSA Ransomware Attacks Targeting Healthcare, Education and Government Institutions, FBI Warns

Hot for Security

MARCH 17, 2021

The notice also includes mitigation steps like: Regularly back up data, air gap and password-protect backup copies offline. Install updates/patch operating systems, software, and firmware as soon as they are released. Use multifactor authentication where possible. … Implement network segmentation. and others.

Education

Education Healthcare Government Ransomware

Maze ransomware operators claim to have breached LG Electronics

Security Affairs

JUNE 25, 2020

“One of the screenshots seems to consist of LG Electronics official firmware or software update releases that assist their hardware products to work more efficiently.” At the time of publishing this article, the Maze ransomware operators have released three screenshots as proof of the data breach. ” continues Cyble.

Computers and Electronics

Computers and Electronics Ransomware Mobile Telecommunications

Ransomware: March 2022 review

Malwarebytes

APRIL 11, 2022

Implement regular backups of all data to be stored as air-gapped, password-protected copies offline. Install and regularly update antivirus software on all hosts, and enable real-time detection. Install and regularly update antivirus software on all hosts, and enable real-time detection. Disable hyperlinks in received emails.

Ransomware

Ransomware Firmware Accountability Technology

BlackByte ransomware breached at least 3 US critical infrastructure organizations

Security Affairs

FEBRUARY 14, 2022

The advisory also provides mitigations: Implement regular backups of all data to be stored as air gapped, password protected copies offline. Install and regularly update antivirus software on all hosts, and enable real time detection. Install and regularly update antivirus software on all hosts, and enable real time detection.

Ransomware

Ransomware Accountability Firmware Antivirus

Why Healthcare IoT Requires Strong Machine Identity Management

Security Boulevard

MAY 30, 2022

Many legacy IoT devices have poor security settings, and some healthcare departments let these vulnerabilities slip by not segmenting network access or not changing default passwords, which are common among many IoT devices, and are very easy to find. Change all default passwords. Maintain a regular patch management process.

Healthcare

Healthcare IoT Manufacturing Risk

Spyware in the IoT – the Biggest Privacy Threat This Year

SiteLock

AUGUST 27, 2021

Cybercriminals were able to exploit the default password on thousands of these innocuous devices to carry out this nefarious attack. When not secured properly on their own Wi-Fi channel, IoT devices can be more than an inconvenience, they can be seen as a critical security risk due to the poor security protocols like fixed default passwords.

IoT

IoT Spyware VPN Passwords

How Can I Protect My Company From Cyber-Attacks?

Cytelligence

MARCH 3, 2023

A secure network starts with a strong password policy. Passwords should be complex and changed frequently. This includes teaching them how to identify suspicious emails and links, how to create strong passwords, and how to recognize and report cyber threats. This can include monitoring for unusual traffic.

Cyber Attacks

Cyber Attacks Antivirus Firewall Data breaches

CISA, FBI shared a joint advisory to warn of Zeppelin ransomware attacks

Security Affairs

AUGUST 13, 2022

“The FBI is seeking any information that can be shared, to include boundary logs showing communication to and from foreign IP addresses, a sample ransom note, communications with Zeppelin actors, Bitcoin wallet information, decryptor files, and/or a benign sample of an encrypted file” concludes the alert.

Ransomware

Ransomware Encryption Firmware Backups

How to Get Out of a Scam

CyberSecurity Insiders

NOVEMBER 14, 2021

They contain a wealth of information like credit card numbers, online passwords, photos, intellectual property, work documents and more. Here’s what you should do immediately: Reset your most sensitive passwords for local and online accounts. Run a complete antivirus/anti-malware scan and update software.

Scams

Scams Banking Accountability Passwords

MITRE, CISA Reveal Dangerous Hardware & Software Vulnerabilities

D-Link issues beta hotfix for multiple flaws in DIR-3040 routers

Trending Sources

Be aware of exposure of sensitive data on Wi-Fi settings for Canon inkjet printers

P2P Weakness Exposes Millions of IoT Devices

Multiple flaws in CODESYS V3 SDK could lead to RCE or DoS?

CISA and FBI issue alert about Zeppelin ransomware

The High-Stakes Game of Ensuring IoMT Device Security

SonicWall warns users of “imminent ransomware campaign”

Nine flaws in CyberPower and Dataprobe solutions expose data centers to hacking

Cisco Warns of Multiple Flaws in Small Business Series Switches

Beyond the Office: Securing Home Devices and Networks Against Corporate Breaches

Defending Against Misconfigured MFA & PrintNightmare Vulnerabilities

An educational robot security research

Half of EDR Tools, Organizations Vulnerable to Clop Ransomware: Researchers

IoT Unravelled Part 3: Security

Avoslocker ransomware gang targets US critical infrastructure

FBI warns of ransomware attacks targeting the food and agriculture sector

Internet safety tips for kids and teens: A comprehensive guide for the modern parent

Warning issued about Vice Society ransomware targeting the education sector

Patch now! Netgear fixes serious smart switch vulnerabilities

How to Configure a Router to Use WPA2 in 7 Easy Steps

Ranzy Locker ransomware hit tens of US companies in 2021

FBI published a flash alert on Mamba Ransomware attacks

BlackCat Ransomware gang breached over 60 orgs worldwide

"In our modern world, countless applications rely on radio frequency elements" - an Interview with Larbi Ouiyzme

Russia-linked threats actors exploited default MFA protocol and PrintNightmare bug to compromise NGO cloud

USBAnywhere BMC flaws expose Supermicro servers to hack

A bug is about to confuse a lot of computers by turning back time 20 years

For remote workforces, don’t overlook printer security

Bad Luck: BlackCat Ransomware Bulletin

FBI warns of increase in PYSA ransomware attacks targeting education

Remotely Accessing Secure Kali Pi

NSA, CISA Release Guidance for Choosing and Hardening VPNs

FBI warns of ransomware threat to food and agriculture

Wireless Security: WEP, WPA, WPA2 and WPA3 Explained

PYSA Ransomware Attacks Targeting Healthcare, Education and Government Institutions, FBI Warns

Maze ransomware operators claim to have breached LG Electronics

Ransomware: March 2022 review

BlackByte ransomware breached at least 3 US critical infrastructure organizations

Why Healthcare IoT Requires Strong Machine Identity Management

Spyware in the IoT – the Biggest Privacy Threat This Year

How Can I Protect My Company From Cyber-Attacks?

CISA, FBI shared a joint advisory to warn of Zeppelin ransomware attacks

How to Get Out of a Scam

Stay Connected