Blog, DDOS and Firmware - Cyber Security Informer

Exploring the EU Cybersecurity Certification Scheme: A Guide to Common Criteria

Centraleyes

APRIL 7, 2025

Firewalls, Routers, and Switches): Threat Resilience: Devices must demonstrate resistance against known attack vectors, including DDoS attacks, buffer overflows, and man-in-the-middle attempts. Below are examples of these standards and their implications across various product types: Network Devices (e.g.,

Cybersecurity

Cybersecurity Encryption Marketing Healthcare

DDoS attacks in Q4 2020

SecureList

FEBRUARY 16, 2021

After the attacks came to light, the manufacturer promptly released a firmware update for configuring verification of incoming requests. In December, Canada’s Laurentian University reported a DDoS attack. Educational institutions are recommended to use anti-DDoS solutions and strong firewall settings, and partner up with ISPs.

DDOS

DDOS Cryptocurrency Marketing Internet

TP-Link High-Severity Flaw Added to Mirai Botnet Arsenal

Heimadal Security

APRIL 27, 2023

A TP-Link Archer A21 (AX1800) consumer-grade WiFi router vulnerability has been used by Mirai botnet to launch DDoS attacks against IoT devices. The flaw in the TP-Link Archer AX21 firmware was discovered back in December 2022, and the company released a patch in March.

Firmware

Firmware DDOS IoT Cybersecurity

Both Mirai and Hoaxcalls IoT botnets target Symantec Web Gateways

Security Affairs

MAY 19, 2020

“There is no evidence to support any other firmware versions are vulnerable at this point in time and these findings have been shared with Symantec.” The botnet borrows the code from Tsunami and Gafgyt botnets, it expanded the list of targeted devices and added new distributed denial of service (DDoS) capabilities.

IoT

IoT DDOS Authentication Firmware

A new Mirai botnet variant targets TP-Link Archer A21

Security Affairs

APRIL 25, 2023

In March, TP-Link released a firmware update to address multiple issues, including this vulnerability. The Mirai botnet that is behind the attacks observed by ZDI is focused on launching DDoS attacks, it has the capability to target Valve Source Engine (VSE). ” continues the report.

DDOS

DDOS Engineering Firmware Architecture

Realtek-based routers, smart devices are being gobbled up by a voracious botnet

Malwarebytes

AUGUST 24, 2021

A few weeks ago we blogged about a vulnerability in home routers that was weaponized by the Mirai botnet just two days after disclosure. Mirai hoovers up vulnerable Internet of Things (IoT) devices and adds them to its network of zombie devices, which can then be used to launch huge Distributed Denial of Service (DDoS) attacks.

Firmware

Firmware IoT DDOS Internet

Mirai code re-use in Gafgyt

Security Affairs

APRIL 16, 2021

In this blog, we’ll take a look at some of the re-used Mirai modules , their functionality, and the Uptycs EDR detection capabilities of Gafgyt. HTTP flooding is a kind of DDoS attack in which the attacker sends a large number of HTTP requests to the targeted server to overwhelm it. HTTP flooding module. Figure 1: HTTP flooder module.

DDOS

DDOS Malware IoT Firmware

Attacks Escalating Against Linux-Based IoT Devices

eSecurity Planet

JANUARY 20, 2022

There was a 10-fold increase in the number of samples of Mozi found in the wild, Mihai Maganu, a threat researcher at CrowdStrike, wrote in a blog post. The primary goal of all this malware is to compromise the devices and systems, pull them into a botnet and use them for distributed denial-of-services (DDoS) attacks, Maganu wrote.

IoT

IoT DDOS Malware Internet

Security Affairs newsletter Round 362 by Pierluigi Paganini

Security Affairs

APRIL 24, 2022

Please vote for Security Affairs as the best European Cybersecurity Blogger Awards 2022 – VOTE FOR YOUR WINNERS Vote for me in the sections “The Underdogs – Best Personal (non-commercial) Security Blog” and “The Tech Whizz – Best Technical Blog” and others of your choice. Pierluigi Paganini.

Cyber Insurance

Cyber Insurance Spyware Firmware Insurance

Attackers Exploit Flaw that Could Impact Millions of Routers, IoT Devices

eSecurity Planet

AUGUST 10, 2021

In a recent blog post , the researchers said the bad actors are looking to leverage a path traversal vulnerability that could affect millions of home routers and other Internet of Things (IoT) devices that use the same code base and are manufactured by at least 17 vendors. A Pattern of Exploits.

IoT

IoT DDOS Manufacturing Internet

Naming & Shaming Web Polluters: Xiongmai

Krebs on Security

OCTOBER 9, 2018

“Although Xiongmai had seven months notice, they have not fixed any of the issues,” the researchers wrote in a blog post published today. In fact, the researchers found it was trivial to set up a system that mimics the XMEye cloud and push malicious firmware updates to any device.

Computers and Electronics

Computers and Electronics IoT Passwords Internet

Security Affairs newsletter Round 419 by Pierluigi Paganini – International edition

Security Affairs

MAY 14, 2023

Please vote for Security Affairs ( [link] ) as the best European Cybersecurity Blogger Awards 2022 – VOTE FOR YOUR WINNERS Vote for me in the sections where is reported Securityaffairs or my name Pierluigi Paganini Please nominate Security Affairs as your favorite blog.

Data breaches

Data breaches DDOS Ransomware Hacking

APT trends report Q2 2022

SecureList

JULY 28, 2022

In late 2021, we encountered a malicious DXE driver incorporated into several UEFI firmware images that were flagged by our firmware scanner (integrated into Kaspersky products at the start of 2019). As part of this process, the actor abused a legitimate blog service to host a malicious script with an encoded format.

Malware

Malware Firmware Phishing Cryptocurrency

IT threat evolution Q1 2022

SecureList

MAY 27, 2022

MoonBounce: the dark side of UEFI firmware. Late last year, we became aware of a UEFI firmware-level compromise through logs from our firmware scanner (integrated into Kaspersky products at the start of 2019). Subsequently, DDoS attacks hit some government websites. Targeted attacks.

Phishing

Phishing Spyware Firmware Malware

Security Affairs newsletter Round 420 by Pierluigi Paganini – International edition

Security Affairs

MAY 21, 2023

Please vote for Security Affairs ( [link] ) as the best European Cybersecurity Blogger Awards 2022 – VOTE FOR YOUR WINNERS Vote for me in the sections where is reported Securityaffairs or my name Pierluigi Paganini Please nominate Security Affairs as your favorite blog.

Data breaches

Data breaches Cybercrime Ransomware Hacking

AT&T Alien Labs finds new Golang malware (BotenaGo) targeting millions of routers and IoT devices with more than 30 exploits

CyberSecurity Insiders

NOVEMBER 11, 2021

It also has different DDoS functionality. The malware maps each function with a string that represents a potential targeted system — such as a signature, which we’ll explain later in this blog (see figure 3). Ax with firmware 1.04b12 and earlier. NETGEAR DGN2200 devices with firmware through 10.0.0.50.

IoT

IoT Malware Firmware Authentication

Securing Public Sector Against IoT Malware in 2024

Security Boulevard

JANUARY 11, 2024

In this blog post, we’ll explore the potential impact of IoT malware on the public sector — a story of innovation, risk, and the need for resilience. These families are a particularly formidable threat to the public sector — in the form of distributed denial-of-service (DDoS) attacks.

IoT

IoT Malware Education Government

Machine Identities are Essential for Securing Smart Manufacturing

Security Boulevard

FEBRUARY 28, 2022

DDoS attacks : these IoT security breaches in an enterprise environment are some of the most harmful as they can shut down the entire enterprise. . Secure Firmware Updates Are a Necessity for Resilient IoT Deployments. Related posts. Streamlining IoT and Edge Security for Machine Identities [Venafi + Device Authority]. UTM Medium.

Manufacturing

Manufacturing IoT Authentication Artificial Intelligence

Why Healthcare IoT Requires Strong Machine Identity Management

Security Boulevard

MAY 30, 2022

Compromised devices can be leveraged as part of a botnet or can contribute to a DDoS attack which can further hinder an organization. Secure IoT firmware and authenticated devices offer benefits that extend to the entire healthcare ecosystem. How to secure healthcare IoT. UTM Medium. UTM Source. UTM Campaign. Recommended-Resources.

Healthcare

Healthcare IoT Manufacturing Risk

Advanced threat predictions for 2025

SecureList

NOVEMBER 25, 2024

Throughout the year, we’ve covered the most interesting of these attacks on our blog. For instance, one recent attack observed in this area was a DDoS attack targeting Israel’s credit card payment system. For instance, this year we reported a 25% rise in APT attack detections observed from January to June.

IoT

IoT Phishing Energy and Utilities Cryptocurrency

Cyber Threats to the FIFA World Cup Qatar 2022

Digital Shadows

NOVEMBER 10, 2022

Most of the observed attacks were crowdsourced distributed denial of service (DDoS) attacks, website defacements, and data destruction operations. As you can see in the example below, in 2014 some threat actors preferred internet relay chats (IRCs) to organize DDoS attacks.

Cyber threats

Cyber threats Media Social Engineering DDOS

Cyber Security Roundup for March 2021

Security Boulevard

FEBRUARY 28, 2021

roundup of UK focused Cyber and Information Security News, Blog Posts, Reports and general Threat Intelligence from the previous calendar month, February 2021. I wrote a blog post about my concerns given Linux is embedded everywhere, yet many of these systems are rarely, and even never updated with security updates.

Energy and Utilities

Energy and Utilities Ransomware DDOS Accountability

APT trends report Q1 2022

SecureList

APRIL 27, 2022

Subsequently, DDoS attacks hit several government websites. In December we were made aware of a UEFI firmware-level compromise through logs from our firmware scanning technology. These changes allowed the attackers to intercept the original flow of the firmware code and have it executed alongside a sophisticated infection chain.

Malware

Malware Firmware Government Phishing

Cyber Security Informer

Exploring the EU Cybersecurity Certification Scheme: A Guide to Common Criteria

DDoS attacks in Q4 2020

Trending Sources

TP-Link High-Severity Flaw Added to Mirai Botnet Arsenal

Both Mirai and Hoaxcalls IoT botnets target Symantec Web Gateways

A new Mirai botnet variant targets TP-Link Archer A21

Realtek-based routers, smart devices are being gobbled up by a voracious botnet

Mirai code re-use in Gafgyt

Attacks Escalating Against Linux-Based IoT Devices

Security Affairs newsletter Round 362 by Pierluigi Paganini

Attackers Exploit Flaw that Could Impact Millions of Routers, IoT Devices

Naming & Shaming Web Polluters: Xiongmai

Security Affairs newsletter Round 419 by Pierluigi Paganini – International edition

APT trends report Q2 2022

IT threat evolution Q1 2022

Security Affairs newsletter Round 420 by Pierluigi Paganini – International edition

AT&T Alien Labs finds new Golang malware (BotenaGo) targeting millions of routers and IoT devices with more than 30 exploits

Securing Public Sector Against IoT Malware in 2024

Machine Identities are Essential for Securing Smart Manufacturing

Why Healthcare IoT Requires Strong Machine Identity Management

Advanced threat predictions for 2025

Cyber Threats to the FIFA World Cup Qatar 2022

Cyber Security Roundup for March 2021

APT trends report Q1 2022

Stay Connected