Security Affairs

AUGUST 24, 2021

On August 15, firmware security company IoT Inspector published details about the flaws. We identified at least 65 different affected vendors with close to 200 unique fingerprints, thanks both to Shodan’s scanning capabilities and some misconfiguration by vendors and manufacturers who expose those devices to the Internet.

IoT 120

IoT Firmware Internet Internet 120

Security Affairs

NOVEMBER 11, 2021

Ax with firmware 1.04b12 and earlier CVE-2016-1555 Netgear WN604 before 3.3.3 CVE-2017-6077 NETGEAR DGN2200 devices with firmware through 10.0.0.50 CVE-2020-9054 Multiple ZyXEL network-attached storage (NAS) devices running firmware version 5.2, Affected products include: NAS326 before firmware V5.21(AAZF.7)C0 A2pvI042j1.d26m

IoT 115

IoT Firmware Malware Wireless 115

Malwarebytes

OCTOBER 20, 2022

LAPSUS$ is a relative newcomer to the cybercrime scene that first appeared in the summer of 2021. Two of the seven suspects were charged with hacking offenses and one was re-arrested later after an attack on Rockstar Games. It has made a name for itself by leaking sensitive information from some big targets. Organized crime.

Cybercrime 77

Cybercrime Firmware Encryption Internet 77

Security Affairs

MAY 14, 2023

ransom Dragon Breath APT uses double-dip DLL sideloading strategy International Press Cybercrime San Bernardino County pays $1.1-million ransom Dragon Breath APT uses double-dip DLL sideloading strategy International Press Cybercrime San Bernardino County pays $1.1-million

Data breaches 84

Data breaches DDOS Artificial Intelligence Ransomware 84

Security Affairs

OCTOBER 7, 2021

It could be quite easy for threat actors in the wild to find exposed Dahua devices using a search engine like Shodan and attempt to hack them using the available PoC code. In order to protect Dahua devices, users have to install the latest firmware version. SecurityAffairs – hacking, Dahua cameras). Pierluigi Paganini.

Authentication 120

Authentication Firmware Hacking Engineering 120

Security Affairs

SEPTEMBER 6, 2022

today detected the security threat DEADBOLT leveraging exploitation of Photo Station vulnerability to encrypt QNAP NAS that are directly connected to the Internet. “We strongly urge that their QNAP NAS should not be directly connected to the Internet. SecurityAffairs – hacking, DeadBolt ransomware). and QTS 4.4.1.

Ransomware 80

Ransomware Internet Internet Encryption 80

The Last Watchdog

APRIL 28, 2020

That, of course, presents the perfect environment for cybercrime that pivots off social engineering. Sadly, coronavirus phishing and ransomware hacks already are in high gear. What people will eventually come to realize, the sooner the better, is that we will need to flatten the X factor represented by cybercrime.

Social Engineering 174

Social Engineering Cyber Attacks Scams Engineering 174

Security Affairs

SEPTEMBER 9, 2021

The Russian internet service provider Yandex is under a massive distributed denial-of-service (DDoS) attack that began last week. “A high-ranking source at Yandex told Vedomosti that the largest DDoS attack in the history of the Russian Internet was carried out on the company’s servers last weekend.”

DDOS 103

DDOS Internet Internet Firmware 103

Security Affairs

MARCH 13, 2022

SecurityAffairs – hacking, newsletter). If you want to also receive for free the newsletter with the international press subscribe here. CVE-2022-0492 flaw in Linux Kernel cgroups feature allows container escape Charities and NGOs providing support in Ukraine hit by malware. Follow me on Twitter: @securityaffairs and Facebook.

Data breaches 80

Data breaches Firmware Hacking Ransomware 80

Security Affairs

JULY 8, 2022

Preliminary investigation indicates that Checkmate attacks via SMB services exposed to the internet, and employs a dictionary attack to break accounts with weak passwords.” ……… “ The vendor recommends not exposing the SMB service to the internet and using VPN to access the NAS and reduce the attack surface.

Ransomware 88

Ransomware Encryption Passwords Internet 88

Security Affairs

DECEMBER 22, 2022

Microsoft Threat Intelligence Center (MSTIC) researchers discovered a new variant of the Zerobot botnet (aka ZeroStresser) that was improved with the capabilities to target more Internet of Things (IoT) devices. Maintain device health with updates: Make sure devices are up to date with the latest firmware and patches.

IoT 112

IoT DDOS Malware Firmware 112

Security Affairs

FEBRUARY 24, 2022

At the end of January, QNAP forced the firmware update for its Network Attached Storage (NAS) devices to protect its customers against the DeadBolt ransomware. The New Zeeland CERT published an advisory to warn of attacks on some internet-facing Asustor models, including AS5104T, AS5304T, AS6404T, AS7004T, AS5202T, AS6302T, and AS1104T.

Ransomware 77

Ransomware Encryption Internet Internet 77

Security Affairs

OCTOBER 22, 2022

US government agencies warned that the Daixin Team cybercrime group is actively targeting the U.S. CISA, the FBI, and the Department of Health and Human Services (HHS) warned that the Daixin Team cybercrime group is actively targeting U.S. SecurityAffairs – hacking, Daixin Team). Pierluigi Paganini.

Ransomware 65

Ransomware VPN Cybercrime Accountability 65

Security Affairs

JANUARY 31, 2022

A hacking campaign, tracked as Eternal Silence, is abusing UPnP to compromise routers and use them to carry out malicious activities. Experts recommend users installing routers update and patched firmware to mitigate the threat. SecurityAffairs – hacking, Eternal Silence). ” continues Akamai. Pierluigi Paganini.

Internet 93

Internet Internet Firmware Hacking 93

Security Affairs

AUGUST 10, 2021

” Palo Alto researchers said that some 250,000 QNAP and Synology NAS devices are exposed to Internet, according to data from the Cortex Xpanse platform. Researchers provided the following recommendations for protecting home offices from ransomware attacks: Update device firmware to keep attacks of this nature at bay.

Ransomware 125

Ransomware Encryption Firmware Passwords 125

SecureList

NOVEMBER 14, 2022

Looking back at past leaks of private companies providing such services, such as in the case of Hacking Team, we learned that many states all over the world were buying these capabilities, whether to complement their in-house technologies or as a stand-alone solution they couldn’t develop.

Firmware 110

Firmware Surveillance Mobile Telecommunications 110

Security Affairs

FEBRUARY 14, 2022

The report includes MD5 hashes of suspicious ASPX files discovered on compromised Microsoft Internet Information Services (IIS) servers and a list of commands used by ransomware operators observed by the researchers. Install updates/patch operating systems, software, and firmware as soon as updates/patches are released.

Ransomware 84

Ransomware Accountability Firmware Antivirus 84

Security Affairs

AUGUST 20, 2021

Organizations using Netgear, Huawei, and ZTE network devices are recommended to keep their firmware up to date and use strong passwords. SecurityAffairs – hacking, Mozi botnet). Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini.

IoT 102

IoT DNS Manufacturing Firmware 102

SecureList

JULY 28, 2022

In late 2021, we encountered a malicious DXE driver incorporated into several UEFI firmware images that were flagged by our firmware scanner (integrated into Kaspersky products at the start of 2019). We have seen a spike in “hacktivist” attacks, ranging from DDoS attacks to doxxing and hack-and-leak operations.

Malware 134

Malware Firmware Phishing Cryptocurrency 134

Security Boulevard

MAY 2, 2022

Anonymous, a well known global hacking consortium, joined the battle by directing their resources against several Russian targets. Most firmwares devices focus on the functionality of the component with minimal onboard security protection. OT systems require extensive planning and execution to perform firmware updates and downtime.

Cyber Attacks 52

Cyber Attacks IoT Firmware Social Engineering 52

Responsible Cyber

APRIL 8, 2020

The Internet of Things (IoT) is undeniably the future of technology. As cybercrime has become well-funded and increasingly sophisticated, phishing remains one of the most effective methods used by criminals to introduce malware into businesses. IoT Opens Excessive Entry Points. Indeed, it has added convenience to our hectic schedules.

Cybersecurity 98

Cybersecurity DDOS Small Business Phishing 98

SecureList

DECEMBER 14, 2022

While the impact of these destructive cyber-attacks paled in comparison to the effects of the kinetic attacks taking place at the same time, it should be noted that this capability could in theory be directed against any country outside of the context of an armed conflict and under the pretense of traditional cybercrime activity.

DDOS 134

DDOS Ransomware Government Energy and Utilities 134

SecureList

FEBRUARY 16, 2021

After the attacks came to light, the manufacturer promptly released a firmware update for configuring verification of incoming requests. Dear players, The PUBG MOBILE team are currently actively working to resolve the DDoS attacks against our systems and the new hacking issues. For information, please check out here: [link].

DDOS 132

DDOS Cryptocurrency Marketing Internet 132

SecureList

OCTOBER 26, 2021

Upon further investigation we also discovered additional implants deployed through both ShadowPad and ShadowShredder, such as Quarian backdoor, PlugX, Poison Ivy and other hack tools. Historically, Lazarus used MATA to attack various industries for cybercrime-like intentions: stealing customer databases and spreading ransomware.

Malware 142

Malware Government Surveillance Spyware 142

Security Boulevard

JANUARY 18, 2024

Supply Chain hacking methods evolve and increasing attacks become a problem for everyone Advanced attackers are developing tools and tactics to intensify supply chain compromises, fueling many new attacks in 2024 that impact disproportionate numbers of downstream consumers. In 2024: 1.

Risk 115

Risk Cybersecurity CISO Technology 115