Authentication, Firmware and Software - Cyber Security Informer

Pwn2Own – When The Latest Firmware Isn’t

LRQA Nettitude Labs

NOVEMBER 1, 2023

All exploits must either bypass authentication mechanisms or require no authentication. Firmware Updates Pwn2Own requires exploits to work against the latest firmware versions at the time of the competition. This competition involves teams researching certain devices to find and exploit vulnerabilities.

Firmware

Firmware Authentication Software

Hardening Firmware Across the Android Ecosystem

Google Security

FEBRUARY 21, 2023

For the purposes of this blog, we refer to the software that runs on all these other processors as “Firmware”. Android’s defense-in-depth strategy also applies to the firmware running on bare-metal environments in these microcontrollers, as they are a critical part of the attack surface of a device.

Firmware

Firmware Software Authentication Technology

MY TAKE: Why locking down ‘firmware’ has now become the next big cybersecurity challenge

The Last Watchdog

JUNE 10, 2019

Locking down firmware. Starks Federal Communications Commission member Geoffrey Starks recently alluded to the possibility that China may have secretly coded the firmware in Huawei’s equipment to support cyber espionage and cyber infrastructure attacks. telecoms by Chinese tech giant Huawei.

Firmware

Firmware Cybersecurity Technology Engineering

MITRE, CISA Reveal Dangerous Hardware & Software Vulnerabilities

eSecurity Planet

NOVEMBER 4, 2021

According to MITRE, “Because hardware is not patchable as easily as software, any flaw discovered after release and production typically cannot be fixed without a recall of the product.”. CWE-1277 : Firmware Not Updateable – firmware exploitation exposes the victim to a permanent risk without any possibility to patch weaknesses.

Software

Software Firmware Computers and Electronics Risk

D-Link fixes two critical flaws in D-View 8 network management suite

Security Affairs

MAY 25, 2023

D-Link fixed two critical flaws in its D-View 8 network management suite that could lead to authentication bypass and arbitrary code execution. in its D-View 8 network management suite that could be exploited by remote attackers to bypass authentication and execute arbitrary code. ” reads the advisory published by ZDI.

Firmware

Firmware Authentication Software Hacking

Firmware Fuzzing 101

ForAllSecure

DECEMBER 16, 2020

Embedded applications are some of the most prolific software out there in the world. Netgear N300 MIPS firmware image. What's Special about Firmware? Fuzzing firmware presents a specific set of challenges that are not often present together in other targets. Is a MIPS Linux firmware. Introduction. Prerequisites.

Firmware

Firmware Architecture Engineering Authentication

Firmware Fuzzing 101

ForAllSecure

DECEMBER 15, 2020

Embedded applications are some of the most prolific software out there in the world. Netgear N300 MIPS firmware image. What's Special about Firmware? Fuzzing firmware presents a specific set of challenges that are not often present together in other targets. Is a MIPS Linux firmware. Extracting Firmware.

Firmware

Firmware Architecture Engineering Authentication

Enhance your security posture by detecting risks on authenticator devices

Thales Cloud Protection & Licensing

MARCH 17, 2022

Enhance your security posture by detecting risks on authenticator devices. Not only are mobile devices used as end points to access corporate mail and other enterprise applications, they are also frequently used as authentication devices. Limited visibility on users’ devices can undermine authentication integrity.

Authentication

Authentication Risk Mobile Computers and Electronics

Binarly released the free online scanner to detect the CVE-2024-3094 Backdoor

Security Affairs

APRIL 2, 2024

Researchers from the firmware security firm Binarly released a free online scanner to detect the CVE-2024-3094 Backdoor Last week, Microsoft engineer Andres Freund discovered a backdoor issue in the latest versions of the “xz” tools and libraries. The malicious build interferes with the authentication in sshd through systemd.

Firmware

Firmware Authentication Engineering Hacking

Two critical flaws affect CODESYS ICS Automation Software

Security Affairs

JUNE 27, 2022

CODESYS addressed 11 security flaws in the ICS Automation Software that could lead to information disclosure and trigger a denial-of-service (DoS) condition. CODESYS has released security patches to fix eleven 11 vulnerabilities in its ICS Automation Software. SecurityAffairs – hacking, Codesys ICS Automation Software).

Software

Software Manufacturing Firmware Risk

Enhance your security posture by detecting risks on authenticator devices

Thales Cloud Protection & Licensing

MARCH 17, 2022

Enhance your security posture by detecting risks on authenticator devices. Not only are mobile devices used as end points to access corporate mail and other enterprise applications, they are also frequently used as authentication devices. Limited visibility on users’ devices can undermine authentication integrity.

Authentication

Authentication Risk Mobile Computers and Electronics

Experts found 15 flaws in Netgear JGS516PE switch, including a critical RCE

Security Affairs

MARCH 14, 2021

Netgear has released security and firmware updates for its JGS516PE Ethernet switch to address 15 vulnerabilities, including a critica remote code execution issue. “The switch internal management web application in firmware versions prior to 2.6.0.43 ” reads the advisory published by NCC Group.”

Firmware

Firmware Authentication Hacking Software

Criminal group busted after stealing hundreds of keyless cars

Malwarebytes

OCTOBER 18, 2022

Among the arrested were the software developers that created so-called automotive diagnostic solutions which allowed the criminals to replace the original software of the vehicles, allowing the doors to be opened and the ignition to be started without the actual key fob. Stealing keyless cars. Mitigation.

Firmware

Firmware Manufacturing Software Authentication

MY TAKE: ‘Digital trust’ has a huge role to play mitigating cybersecurity threats, going forward

The Last Watchdog

MAY 23, 2022

They require integrity, authentication, trusted identity and encryption. Software-defined-everything is the order of the day. We simply must attain — and sustain — a high bar of confidence in the computing devices, software applications and data that make up he interconnected world we occupy.

Digital transformation

Digital transformation Computers and Electronics Cybersecurity Encryption

Signed, Sealed, Delivered! Code Signing Makes Software Yours

Thales Cloud Protection & Licensing

NOVEMBER 7, 2018

That is not much different from what happens with software and firmware code signing today. Whether it is a software upgrade for a program, a mobile application, or firmware for a device, code is signed, sealed, and delivered, and you are left with the future in your hands! Why Is Code Signing Important?

Software

Software Firmware IoT Authentication

D-Link issues beta hotfix for multiple flaws in DIR-3040 routers

Security Affairs

JULY 17, 2021

Network equipment vendor D-Link has released a firmware hotfix to fix multiple vulnerabilities in the DIR-3040 AC3000-based wireless internet router. Network equipment vendor D-Link has released a firmware hotfix to address multiple vulnerabilities affecting the DIR-3040 AC3000-based wireless internet router. ” states the vendor.

Firmware

Firmware Wireless Passwords Internet

VulnRecap 1/16/24 – Major Firewall Issues Persist

eSecurity Planet

JANUARY 16, 2024

Continue to monitor all of your software for potential malicious behavior, but this week, monitor network appliances in particular. Potential results of the exploits include authentication bypass and command injection. According to Bitdefender, the thermostat does not validate the authenticity of a new firmware update.

Firewall

Firewall Firmware IoT Authentication

Flaws in Medtronic MyCareLink can allow attackers to take over implanted cardiac devices

Security Affairs

DECEMBER 15, 2020

The CVE-2020-25183 is an improper authentication issue that could be exploited by an attacker to bypass the authentication between the MCL Smart Patient Reader and the Medtronic MyCareLink Smart mobile app. The flaw could be exploited by an attacker to remotely execute code taking over the device. ” states the advisory.

Firmware

Firmware Authentication Mobile IoT

Application Security Testing Evolution and How a Software Bill of Materials Can Help

Veracode Security

SEPTEMBER 23, 2021

Since then, open source software has grown enormously and proliferated in all aspects of application development. The downside with this model of building applications is that vulnerabilities present in open source components are inherited by our software as well. Now let's talk about a software bill of materials (SBOM).

Software

Software Penetration Testing Firmware Government

Researchers extract master encryption key from Siemens PLCs

CSO Magazine

OCTOBER 11, 2022

Security researchers have found a way to extract a global encryption key that was hardcoded in the CPUs of several Siemens programmable logic controller (PLC) product lines, allowing them to compromise their secure communications and authentication.

Encryption

Encryption Firmware Engineering Authentication

Nine flaws in CyberPower and Dataprobe solutions expose data centers to hacking

Security Affairs

AUGUST 13, 2023

CVE-2023-3267: OS Command Injection (Authenticated RCE; CVSS 7.5) CVE-2023-3260: OS Command Injection (Authenticated RCE; CVSS 7.2) CVE-2023-3263: Authentication Bypass by Alternate Name (Auth Bypass; CVSS 7.5) of PowerPanel Enterprise software and version 1.44.08042023 of the Dataprobe iBoot PDU firmware.

Hacking

Hacking Firmware Authentication Software

HID Mercury Access Controller flaws could allow to unlock Doors

Security Affairs

JUNE 12, 2022

By using the manufacturer’s built-in ports, we were able to manipulate on-board components and interact with the device.Combining both known and novel techniques, we were able to achieve root access to the device’s operating system and pull its firmware for emulation and vulnerability discovery.” Overall 4.8. Overall 4.8.

Firmware

Firmware Penetration Testing Manufacturing Authentication

Multiple flaws in CODESYS V3 SDK could lead to RCE or DoS?

Security Affairs

AUGUST 13, 2023

Microsoft Threat Intelligence researchers discovered 16 high-severity vulnerabilities, collectively tracked as CoDe16 , in the CODESYS V3 software development kit (SDK). Check with the device manufacturers for available patches and update the device firmware to version to 3.5.19.0 ” continues the report.

Authentication

Authentication Firmware Hacking Passwords

Be aware of exposure of sensitive data on Wi-Fi settings for Canon inkjet printers

Security Affairs

AUGUST 1, 2023

Set up strong authentication mechanisms, such as complex passwords or use multi-factor authentication (MFA) for printer access. Keep the printer’s firmware and software up to date and disable unnecessary services or protocols on the printer that are not required for its intended function.

Wireless

Wireless Firmware Passwords Authentication

NI CompactRIO controller flaw could allow disrupting production

Security Affairs

DECEMBER 12, 2020

The National Instruments CompactRIO product , a rugged, real-time controller that provides high-performance processing capabilities, sensor-specific conditioned I/O, and a closely integrated software toolchain that makes them ideal for Industrial Internet of Things (IIoT), monitoring, and control applications. Pierluigi Paganini.

Firmware

Firmware Manufacturing Software Authentication

Cisco ASA is affacted by a privilege escalation flaw. Patch it now!

Security Affairs

DECEMBER 23, 2018

Cisco Adaptive Security Appliance (ASA) Software is affected by a vulnerability that could be exploited by an attacker to retrieve files or replace software images on a device. . A privilege escalation vulnerability tracked as CVE-2018-15465 affects the Cisco Adaptive Security Appliance (ASA) software.

Firmware

Firmware Authentication Software Advertising

IoT Unravelled Part 3: Security

Troy Hunt

NOVEMBER 25, 2020

I also looked at custom firmware and soldering and why, to my mind, that was a path I didn't need to go down at this time. Let's got through the options: Firmware Patching I'll start with the devices themselves and pose a question to you: can you remember the last time you patched the firmware in your light globes? Or vibrator.

IoT

IoT Firmware Risk Manufacturing

P2P Weakness Exposes Millions of IoT Devices

Krebs on Security

APRIL 26, 2019

The security flaws involve iLnkP2P , software developed by China-based Shenzhen Yunni Technology. The security flaws involve iLnkP2P , software developed by China-based Shenzhen Yunni Technology. A Webcam made by HiChip that includes the iLnkP2P software.

IoT

IoT Firewall Manufacturing Computers and Electronics

Cisco Warns of Multiple Flaws in Small Business Series Switches

eSecurity Planet

MAY 18, 2023

Despite the severity of the flaws, Cisco says the last three products in the list above won’t be covered by software updates or by workarounds because they’ve entered the end-of-life process. “In addition, a software release that is affected by one of the vulnerabilities may not be affected by the other vulnerabilities.”

Small Business

Small Business Firmware Ransomware Software

Use cases of secure IoT deployment

Thales Cloud Protection & Licensing

MAY 31, 2021

In our previous blog post , we discussed the challenges for securing IoT deployments, and how businesses and consumers benefit from authenticating and validating IoT software and firmware updates. Requirements also included that the firmware was to be signed by the manufacturer and verified by the pacemaker.

IoT

IoT Computers and Electronics Manufacturing Firmware

CISA advises D-Link users to take vulnerable routers offline

Malwarebytes

APRIL 5, 2022

This directive applies to all software and hardware found on federal information systems managed on agency premises or hosted by third-parties on an agency’s behalf. As a general policy, when products reach EOS/EOL, they can no longer be supported, and all firmware development for these products cease.

Firmware

Firmware Software Risk Authentication

The High-Stakes Game of Ensuring IoMT Device Security

SecureWorld News

FEBRUARY 17, 2024

This and many other vulnerabilities pose a significant risk, as they not only permit unauthorized access to individual devices but also enable hackers to infiltrate huge hospital networks and cause mass disruption through malicious software. This can disrupt the seamless functioning of other devices within the same network.

Healthcare

Healthcare Manufacturing Internet Internet

Application Security Testing Evolution and How a Software Bill of Materials Can Help

Security Boulevard

SEPTEMBER 23, 2021

Since then, open source software has grown enormously and proliferated in all aspects of application development. The downside with this model of building applications is that vulnerabilities present in open source components are inherited by our software as well. Now let's talk about a software bill of materials (SBOM).

Software

Software Penetration Testing Firmware Government

SonicWall warns users of “imminent ransomware campaign”

Malwarebytes

JULY 15, 2021

The exploitation targets a known vulnerability that has been patched in newer versions of SonicWall firmware. x versions of the firmware. x firmware. x firmware versions. SMA 210/410/500v (Actively Supported) update firmware to 9.0.0.10-28sv Devices at risk. This vulnerability has been patched in the later 9.x

Ransomware

Ransomware Firmware VPN Firewall

FBI issues advisory over Play ransomware

Malwarebytes

DECEMBER 19, 2023

Once inside a network, Play uses specialized tools to try and disable anti-virus software and remove log files. Screenshot of the PLAY leak site The joint CSA emphasizes the importance of having an actionable recovery plan, using multi-factor authentication (MFA) , and keeping all operating systems, software, and firmware up to date.

Ransomware

Ransomware Backups Encryption Firmware

Intel addresses high severity flaw in Processor Diagnostic Tool

Security Affairs

JULY 11, 2019

Intel is releasing software updates to mitigate this potential vulnerability.” may allow an authenticated user to potentially enable escalation of privilege, information disclosure or denial of service via local access.” The flaw has been classified as “medium severity,” it affects firmware versions prior to SCV10150.

Firmware

Firmware Advertising Authentication Hacking

VulnRecap 1/22/24 – Watch Chrome, Ivanti, Citrix Issues

eSecurity Planet

JANUARY 22, 2024

Make sure your security teams are regularly checking vendors’ software and hardware updates for any patches, and keep a particular eye on networking equipment. The problem: The Unified Extensible Firmware Interface (UEFI) specification has an open-source network implementation, EDK II, with nine discovered vulnerabilities.

Authentication

Authentication Malware VPN Mobile

CISA Order Highlights Persistent Risk at Network Edge

Krebs on Security

JUNE 15, 2023

The directive applies to any networking devices — such as firewalls, routers and load balancers — that allow remote authentication or administration. “This is reachable pre-authentication, on every SSL VPN appliance,” French vulnerability researcher Charles Fol tweeted. “Patch your #Fortigate.”

Risk

Risk VPN Internet Internet

Operation Triangulation: The last (hardware) mystery

SecureList

DECEMBER 27, 2023

It was designed to support both old and new iPhones and included a Pointer Authentication Code (PAC) bypass for exploitation of recent models. Because this feature is not used by the firmware, we have no idea how attackers would know how to use it. How could it be that that the exploit used MMIOs that were not used by the firmware?

Firmware

Firmware Engineering Spyware Retail

Beyond the Office: Securing Home Devices and Networks Against Corporate Breaches

SecureWorld News

OCTOBER 8, 2023

Let devices go into sleep mode to allow for automatic software updates. Additionally, be cautious when adding new friends; verify their authenticity through known offline connections. Use the administrator account only for maintenance, software installation, or firmware updates. Opt for strong, hard-to-crack passwords.

Firmware

Firmware IoT Accountability Passwords

AT&T Alien Labs finds new Golang malware (BotenaGo) targeting millions of routers and IoT devices with more than 30 exploits

CyberSecurity Insiders

NOVEMBER 11, 2021

Golang (also known as Go) is an open-source programming language designed by Google and first published in 2007 that makes it easier for developers to build software. Ax with firmware 1.04b12 and earlier. NETGEAR DGN2200 devices with firmware through 10.0.0.50. Affected products include: NAS326 before firmware V5.21(AAZF.7)C0

Malware

Malware IoT Firmware Authentication

Realtek SDK flaws exploited to deliver Mirai bot variant

Security Affairs

AUGUST 24, 2021

Realtek published a security advisory on August 15 to warn customers about security updates to address vulnerabilities in its software developers kits (SDK) which is used by at least 65 separate vendors. On August 15, firmware security company IoT Inspector published details about the flaws. ” reported IoT Inspector.

IoT

IoT Firmware Internet Internet

CISA and FBI issue alert about Zeppelin ransomware

Malwarebytes

AUGUST 16, 2022

Authentication. Require multifactor authentication wherever you can—particularly for webmail, VPNs, and critical systems. Disable password “hints” Require administrator credentials to install software. Use anti-malware software , and keep all operating systems, software, and firmware up to date.

Ransomware

Ransomware Backups Passwords Authentication

Announcing our open source security key test suite

Google Security

NOVEMBER 13, 2020

Posted by Fabian Kaczmarczyck, Software Engineer, Jean-Michel Picod, Software Engineer and Elie Bursztein, Security and Anti-abuse Research Lead Security keys and your phone’s built-in security keys are reshaping the way users authenticate online. So, today we are releasing a new open source security key test suite.

Firmware

Firmware Authentication Engineering Technology

Pwn2Own – When The Latest Firmware Isn’t

Hardening Firmware Across the Android Ecosystem

Trending Sources

MY TAKE: Why locking down ‘firmware’ has now become the next big cybersecurity challenge

MITRE, CISA Reveal Dangerous Hardware & Software Vulnerabilities

D-Link fixes two critical flaws in D-View 8 network management suite

Firmware Fuzzing 101

Firmware Fuzzing 101

Enhance your security posture by detecting risks on authenticator devices

Binarly released the free online scanner to detect the CVE-2024-3094 Backdoor

Two critical flaws affect CODESYS ICS Automation Software

Enhance your security posture by detecting risks on authenticator devices

Experts found 15 flaws in Netgear JGS516PE switch, including a critical RCE

Criminal group busted after stealing hundreds of keyless cars

MY TAKE: ‘Digital trust’ has a huge role to play mitigating cybersecurity threats, going forward

Signed, Sealed, Delivered! Code Signing Makes Software Yours

D-Link issues beta hotfix for multiple flaws in DIR-3040 routers

VulnRecap 1/16/24 – Major Firewall Issues Persist

Flaws in Medtronic MyCareLink can allow attackers to take over implanted cardiac devices

Application Security Testing Evolution and How a Software Bill of Materials Can Help

Researchers extract master encryption key from Siemens PLCs

Nine flaws in CyberPower and Dataprobe solutions expose data centers to hacking

HID Mercury Access Controller flaws could allow to unlock Doors

Multiple flaws in CODESYS V3 SDK could lead to RCE or DoS?

Be aware of exposure of sensitive data on Wi-Fi settings for Canon inkjet printers

NI CompactRIO controller flaw could allow disrupting production

Cisco ASA is affacted by a privilege escalation flaw. Patch it now!

IoT Unravelled Part 3: Security

P2P Weakness Exposes Millions of IoT Devices

Cisco Warns of Multiple Flaws in Small Business Series Switches

Use cases of secure IoT deployment

CISA advises D-Link users to take vulnerable routers offline

The High-Stakes Game of Ensuring IoMT Device Security

Application Security Testing Evolution and How a Software Bill of Materials Can Help

SonicWall warns users of “imminent ransomware campaign”

FBI issues advisory over Play ransomware

Intel addresses high severity flaw in Processor Diagnostic Tool

VulnRecap 1/22/24 – Watch Chrome, Ivanti, Citrix Issues

CISA Order Highlights Persistent Risk at Network Edge

Operation Triangulation: The last (hardware) mystery

Beyond the Office: Securing Home Devices and Networks Against Corporate Breaches

AT&T Alien Labs finds new Golang malware (BotenaGo) targeting millions of routers and IoT devices with more than 30 exploits

Realtek SDK flaws exploited to deliver Mirai bot variant

CISA and FBI issue alert about Zeppelin ransomware

Announcing our open source security key test suite

Stay Connected