CSO and Firmware - Cyber Security Informer

Search:

DAY

WEEK

MONTH

YEAR

May 10 - May 16

May 03 - May 09

Apr 26 - May 02

Apr 19 - Apr 25

MORE

MORE

MORE

MORE

Select your country:
Sign up | Log in

CSO

Firmware

article thumbnail

CSO: Gigabyte firmware component can be abused as a backdoor

Security Boulevard

JUNE 5, 2023

Attackers can abuse the UEFI firmware to inject executable malware code into the Windows kernel, compromising systems. Read More > The post CSO: Gigabyte firmware component can be abused as a backdoor appeared first on Eclypsium | Supply Chain Security for the Modern Enterprise.

CSO

CSO Firmware Malware

article thumbnail

3 ways to prevent firmware attacks without replacing systems

CSO Magazine

APRIL 28, 2021

A recent security post warned that firmware attacks are on the rise. They cited a survey of 1,000 cybersecurity decision makers at enterprises across multiple industries in the UK, US, Germany, Japan, and China finding that that 80% of firms have experienced at least one firmware attack in the past two years.

Firmware Cybersecurity

Join 28,000+

Insiders

Sign Up for our Newsletter

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Trending Sources

article thumbnail

Flaws in Dell's over-the-air device recovery and update impacts millions of devices

CSO Magazine

JUNE 24, 2021

The over-the-internet firmware update and OS recovery feature present in 128 Dell computer models suffers from certificate validation and other flaws that could allow man-in-the-middle (MitM) attackers to compromise the devices at the firmware level and deploy malicious implants. Sign up for CSO newsletters. ].

Firmware CSO Internet Internet

article thumbnail

MoonBounce UEFI implant used by spy group brings firmware security into spotlight

CSO Magazine

JANUARY 21, 2022

While MoonBounce is not the first UEFI rootkit found in the wild -- LoJax , MosaicRegressor are two examples-- these types of implants are not common because they require knowledge of low-level firmware programming. They are typically found in the arsenal of well-resourced and sophisticated attacker groups.

Firmware Government Software

article thumbnail

Gigabyte firmware component can be abused as a backdoor

CSO Magazine

MAY 31, 2023

Researchers warn that the UEFI firmware in many motherboards made by PC hardware manufacturer Gigabyte injects executable code inside the Windows kernel in an unsafe way that can be abused by attackers to compromise systems. Sophisticated APT groups are abusing similar implementations in the wild.

Firmware Manufacturing Risk

article thumbnail

Flaws in MegaRAC baseband management firmware impact many server brands

CSO Magazine

DECEMBER 6, 2022

Researchers have found three vulnerabilities in AMI MegaRAC, a baseband management controller (BMC) firmware used by multiple server manufacturers. If exploited, the flaws could allow attackers to remotely control servers, deploy malware and firmware implants, or trigger damaging actions that leave them inoperable.

Firmware Manufacturing Malware

article thumbnail

37 hardware and firmware vulnerabilities: A guide to the threats

CSO Magazine

AUGUST 11, 2022

In January 2018, the entire computer industry was put on alert by two new processor vulnerabilities dubbed Meltdown and Spectre that defeated the fundamental OS security boundaries separating kernel and user space memory.

Firmware Manufacturing

article thumbnail

Microsoft's Pluton security processor tackles hardware, firmware vulnerabilities

CSO Magazine

JANUARY 19, 2022

While this year’s Consumer Electronics Show was impacted by COVID, it didn’t stop Lenovo from announcing the first Microsoft Pluton-powered Windows 11 PCs. First announced in 2020, the Pluton is a security processor that Microsoft developed in partnership with AMD and Qualcomm to provide what they called “chip to cloud” security.

Firmware

article thumbnail

BlackLotus bootkit can bypass Windows 11 Secure Boot: ESET

CSO Magazine

MARCH 1, 2023

A Unified Extensible Firmware Interface (UEFI) bootkit called BlackLotus is found to be capable of bypassing an essential platform security feature, UEFI Secure Boot , according to researchers from Slovakia-based cybersecurity firm ESET. Secure Boot is designed to ensure that the system boots only with trusted software and firmware.

Firmware Malware Software Cybersecurity

article thumbnail

Cybercriminals look to exploit Intel ME vulnerabilities for highly persistent implants

CSO Magazine

JUNE 2, 2022

The goal of this technique is to install malicious code deep inside computer firmware where it cannot be blocked by operating systems and third-party endpoint security products. Firmware implants are powerful and are usually used in high-value operations by state-sponsored hacker groups.

Firmware Ransomware Engineering

article thumbnail

BusyBox flaws highlight need for consistent IoT updates

CSO Magazine

NOVEMBER 10, 2021

Security researchers have found and reported 14 vulnerabilities in the BusyBox userspace tool that's used in millions of embedded devices running Linux-based firmware. While the flaws don't have high criticality, some of them do have the potential to result in remote code execution (RCE).

IoT

IoT Firmware Software

article thumbnail

Why you should secure your embedded server management interfaces

CSO Magazine

JANUARY 14, 2022

All server manufacturers provide this functionality in firmware through a set of chips that run independent of the rest of the server and OS. Having the ability to remotely manage and monitor servers even when their main operating system becomes unresponsive is vital to enterprise IT administrators.

Manufacturing Firmware Cybersecurity

article thumbnail

PLC vulnerabilities can enable deep lateral movement inside OT networks

CSO Magazine

FEBRUARY 13, 2023

However, researchers warn that these controllers should themselves be treated as perimeter devices and flaws in their firmware could enable deep lateral movement through the point-to-point and other non-routable connections they maintain to other low-level devices.

Firmware Architecture Technology Risk

article thumbnail

Remote work raises threats from consumer IoT devices

CSO Magazine

FEBRUARY 2, 2021

There were several instances where I had replaced my home routers because the vendor did not provide security fixes nor firmware updates,” Costin says, adding that current security practices are not keeping up with the changing landscape of working from home. To read this article in full, please click here (Insider Story)

IoT

IoT Firmware Internet Internet

article thumbnail

Dozens of insecure-by-design flaws found in OT products

CSO Magazine

JUNE 22, 2022

Exploiting these vulnerabilities, attackers with network access to a target device could remotely execute code, change the logic, files or firmware of OT devices, bypass authentication, compromise credentials, cause denials of service or have a variety of operational impacts," researchers from security firm Forescout said in their new report.

Firmware Authentication Technology

article thumbnail

Vulnerabilities found in 250 HP printer models

CSO Magazine

MARCH 23, 2022

As a countermeasure, the manufacturer recommends firmware updates and configuration changes. According to Heise , attackers can use vulnerabilities in the firmware to remotely cause a buffer overflow in around 250 HP printer models. Gateway LLMNR protocol.

Firmware Manufacturing

article thumbnail

Sophisticated UEFI rootkit of Chinese origin shows up again in the wild after 3 years

CSO Magazine

JULY 27, 2022

A sophisticated rootkit that's able to insert itself into the lowest levels of Windows computers -- the motherboard firmware -- has been making victims since 2020 after disappearing from the radar for around three years. The Unified Extensible Firmware Interface (UEFI) is the modern equivalent to the BIOS.

Firmware Malware

article thumbnail

New exploits can bypass Secure Boot and modern UEFI security protections

CSO Magazine

AUGUST 12, 2022

Two teams of researchers have revealed vulnerabilities this week in Unified Extensible Firmware Interface (UEFI) implementations and bootloaders that could allow attackers to defeat the secure boot defenses of modern PCs and deploy highly persistent rootkits.

Firmware Encryption Software

article thumbnail

Vulnerability Recap 9/9/24 – Exploited Vulnerabilities Persist

eSecurity Planet

SEPTEMBER 9, 2024

Sevco’s CSO Brian Contos states, “6% of all IT assets have reached EOL, and known but unpatched vulnerabilities are a favorite target for attackers.” ” To reduce risks, replace unsupported equipment, apply available firmware updates, and keep an accurate IT asset inventory. or later to fix the vulnerability.

Firmware Backups Firewall Risk

article thumbnail

New HP MFP vulnerabilities show why you should update and isolate printers

CSO Magazine

NOVEMBER 30, 2021

Security researchers have published details about two serious vulnerabilities that impact over 150 different HP multifunction printer models with FutureSmart firmware going back at least nine years.

article thumbnail

BrandPost: Endpoint Security: Protecting Your Distributed Workforce From Old and New Threats

CSO Magazine

FEBRUARY 1, 2021

The attacks are becoming more insidious, such as malware that modifies itself to infiltrate a system and hit a specific target, along with attacks directed at firmware. Ransomware attacks also are up, as is crypto-jacking, where a hacker hijacks an endpoint’s processing power to mine cryptocurrency.

Firmware Cryptocurrency Cyber threats Phishing

article thumbnail

Dell launches new cybersecurity resources to enhance zero-trust adoption, cyber resilience

CSO Magazine

OCTOBER 4, 2022

These include a new Zero Trust Center of Excellence for validating a zero-trust architecture for commercial enterprises, as well as new security advisory/vulnerability management services and products designed to enhance cybersecurity across hardware, firmware, software, and object storage. To read this article in full, please click here

Cybersecurity Firmware Architecture Technology

article thumbnail

Researchers show techniques for malware persistence on F5 and Citrix load balancers

CSO Magazine

NOVEMBER 9, 2022

While finding remote code execution vulnerabilities in such devices is not uncommon, incidents where attackers were able to deploy malware on them that can survive restarts or firmware upgrades have been rare and generally attributed with sophisticated APT groups.

Malware

Malware Firmware VPN

article thumbnail

Attacks on SonicWall appliances linked to Chinese campaign: Mandiant

CSO Magazine

MARCH 10, 2023

The responsible malware, dubbed UNC4540, has been found to be stealing user credentials, providing shell access, and persisting through firmware upgrades. This is not a new vulnerability, so a patch was not published,” a Mandiant spokesperson said.

Firmware Mobile Malware

article thumbnail

Researchers extract master encryption key from Siemens PLCs

CSO Magazine

OCTOBER 11, 2022

Siemens advises all customers to upgrade both the firmware of the impacted devices as well as the TIA Portal software that engineers use to communicate with them and deploy their programs.

Encryption Firmware Engineering Authentication

article thumbnail

Nvidia hackers release code-signing certificates that malware can abuse

CSO Magazine

MARCH 4, 2022

On February 24 an extortion group calling itself LAPSUS$ claimed publicly that it had administrative access to multiple Nvidia systems for around a week and managed to exfiltrate 1TB of data including hardware schematics, driver source code, firmware, documentation, private tools and SDKs, and "everything about Falcon" -- a hardware security technology (..)

Malware

Malware Data breaches Firmware Passwords