Security Affairs

MAY 31, 2023

Researchers from firmware security firm Eclypsium have discovered a suspected backdoor-like behavior within Gigabyte systems. The experts discovered that the firmware in Gigabyte systems drops and executes a Windows native executable during the system startup process. The executable resides in a UEFI firmware volume.

Firmware 91

Firmware Risk Software Passwords 91

Schneier on Security

MARCH 8, 2023

These sophisticated pieces of malware target the UEFI—short for Unified Extensible Firmware Interface —the low-level and complex chain of firmware responsible for booting up virtually every modern computer. As the mechanism that bridges a PC’s device firmware with its operating system, the UEFI is an OS in its own right.

Malware 235

Malware Firmware Software Hacking 235

Security Boulevard

FEBRUARY 2, 2021

Download the PDF > In the wake of the Sunburst attack, IR and threat hunting are more important than ever, and firmware should be a key part of these efforts. The post In the Shadow of Sunburst: Hunting for Firmware Persistence in the Context of Supply Chain Attack IR appeared first on Security Boulevard. Similar […].

Firmware 64

Firmware 64

Security Affairs

DECEMBER 30, 2022

The vendor only said that the flaw is a pre-authentication buffer overflow vulnerability and urged customers to address the firmware of their devices as soon as possible. “NETGEAR strongly recommends that you download the latest firmware as soon as possible.” RAX35 fixed in firmware version 1.0.2.60.

Firmware 91

Firmware Wireless Authentication Hacking 91

Malwarebytes

MAY 26, 2023

The CVEs patched in these updates are: CVE-2023-33009 : A buffer overflow vulnerability in the notification function in Zyxel ATP series firmware versions 4.32 Patch 1, USG FLEX series firmware versions 4.50 Patch 1, USG FLEX 50(W) firmware versions 4.25 Patch 1, USG20(W)-VPN firmware versions 4.25

Firmware 80

Firmware VPN Firewall Accountability 80

Security Affairs

JANUARY 18, 2024

Unified Extensible Firmware Interface (UEFI) is a specification that defines the architecture of the platform firmware used for booting the computer hardware and its interface for interaction with the operating system. ” reads the advisory.

Firmware 105

Firmware DNS Advertising Architecture 105

Security Affairs

MARCH 29, 2023

Go to Control Panel > System > Firmware Update. The system downloads and installs the latest available update. Tip: You can also download the update from the QNAP website. Go to Support > Download Center and then perform a manual update for your specific device. Select the Firmware Update tab.

Firmware 96

Firmware Hacking Internet Internet 96

Security Affairs

JANUARY 30, 2023

Taiwanese vendor QNAP is warning customers to install QTS and QuTS firmware updates to address a critical flaw impacting its NAS devices. QNAP released QTS and QuTS firmware updates to address a critical vulnerability, tracked as CVE-2022-27596 (CVSS v3 score: 9.8), that affects QNAP NAS devices.

Firmware 97

Firmware Hacking Internet Internet 97

Security Affairs

JUNE 13, 2020

D-Link has released a firmware update to address three security flaws impacting the DIR-865L home router model, but left some issue unpatched. D-Link has recently released a firmware update to address three out of six security flaws impacting the DIR-865L wireless home router. D-Link’s DIR-865L is no longer supported for U.S.

Firmware 75

Firmware Wireless Advertising Risk 75

Security Affairs

DECEMBER 9, 2021

. “The PING function on the TP-Link TL-WR840N EU v5 router with firmware through TL-WR840N(EU)_V5_171211 is vulnerable to remote code execution via a crafted payload in an IP address input field.” TP-Link addressed the flaw on November 12, 2021 with the release of the firmware update TL-WR840N(EU)_V5_211109.

Firmware 142

Firmware Architecture Malware Hacking 142

Thales Cloud Protection & Licensing

APRIL 3, 2024

In fact, Luna HSM customers can just download and install the latest FIPS validated firmware. For the full details, read the FIPS 140-3 Product Announcement on our Customer Support Portal that outlines where to get the latest firmware for the Luna Network and Luna PCIe models. And that’s it!

Firmware 134

Firmware Technology Backups Marketing 134

Malwarebytes

JUNE 19, 2023

ASUS has released firmware updates for several router models fixing two critical and several other security issues. You will find the latest firmware available for download from the ASUS support page or the appropriate product page. The Asuswrt-Merlin New Gen is an open source firmware alternative for Asus routers.

Firmware 89

Firmware VPN Risk Cybersecurity 89

Malwarebytes

APRIL 3, 2024

CVE-2024-29748 : An elevation of privilege (EoP) vulnerability in the Pixel firmware. Firmware is device-specific software that provides basic machine instructions that allow the hardware to function and communicate with other software running on the device.

Firmware 110

Firmware Software Mobile Risk 110

Security Affairs

AUGUST 6, 2018

HP has released firmware updates that address two critical remote code execution vulnerabilities in some models of inkjet printers. HP has released firmware updates to address two critical RCE flaws affecting some Inkjet printers. Go to the Upgrading Printer Firmware page and follow the instructions provided to install the firmware.

Firmware 44

Firmware Advertising Software Hacking 44

Security Affairs

JANUARY 27, 2023

Lexmark released a security firmware update to fix a remote code execution flaw, tracked as CVE-2023-23560, that impacts more than 100 printer models. Lexmark has released a security firmware update to address a remote code execution vulnerability, tracked as CVE-2023-23560, that impacts more than 100 printer models.

Firmware 93

Firmware Hacking 93

Security Boulevard

MARCH 14, 2024

Fortinet seemed like a decent place to start given the variety of lesser-known security appliances I had noticed while searching for the FortiNAC firmware. Earlier this year, soon after reproducing a remote code execution vulnerability for the Fortinet FortiNAC, I was on the hunt for a set of new research targets.

Wireless 64

Wireless Firmware Authentication 64

Security Affairs

SEPTEMBER 18, 2021

NETGEAR urge its customers using the following products to download the latest firmware: GC108P fixed in firmware version 1.0.8.2 GC108PP fixed in firmware version 1.0.8.2 GS108Tv3 fixed in firmware version 7.0.7.2 GS110TPP fixed in firmware version 7.0.7.2 GS110TPv3 fixed in firmware version 7.0.7.2

Firmware 88

Firmware Engineering Passwords Hacking 88

Security Affairs

MARCH 14, 2021

Netgear has released security and firmware updates for its JGS516PE Ethernet switch to address 15 vulnerabilities, including a critica remote code execution issue. “The switch internal management web application in firmware versions prior to 2.6.0.43 02 Dec 2020 – Netgear released the new firmware v2.6.0.48

Firmware 134

Firmware Authentication Hacking Software 134

Security Affairs

MARCH 8, 2020

Netgear has addressed a critical remote code execution vulnerability that could be exploited by an unauthenticated attacker to take over AC Router Nighthawk (R7800) hardware running firmware versions prior to 1.0.2.68. NETGEAR strongly recommends that you download the latest firmware as soon as possible.”

Firmware 115

Firmware Wireless Advertising Authentication 115

Security Affairs

JULY 17, 2021

Network equipment vendor D-Link has released a firmware hotfix to fix multiple vulnerabilities in the DIR-3040 AC3000-based wireless internet router. Network equipment vendor D-Link has released a firmware hotfix to address multiple vulnerabilities affecting the DIR-3040 AC3000-based wireless internet router. ” states the vendor.

Firmware 118

Firmware Wireless Passwords Internet 118

Malwarebytes

SEPTEMBER 22, 2021

In a detailed post on Github , security researcher Watchful_IP describes how he found that the majority of the recent camera product ranges of Hikvision cameras are susceptible to a critical, unauthenticated, remote code execution (RCE) vulnerability, even with the latest firmware. Hangzhou Hikvision Digital Technology Co.,

Firmware 132

Firmware Surveillance Marketing VPN 132

Security Affairs

APRIL 2, 2024

Researchers from the firmware security firm Binarly released a free online scanner to detect the CVE-2024-3094 Backdoor Last week, Microsoft engineer Andres Freund discovered a backdoor issue in the latest versions of the “xz” tools and libraries. The vulnerability was tracked as CVE-2024-3094 and received a CVSS score of 10.

Firmware 118

Firmware Authentication Engineering Hacking 118

Security Affairs

JULY 22, 2023

The cause of the vulnerability is the improper error message handling in Zyxel ZyWALL/USG series firmware versions 4.60 through 4.73, VPN series firmware versions 4.60 through 5.35, USG FLEX series firmware versions 4.60 through 5.35, and ATP series firmware versions 4.60 through 5.35.

DDOS 96

DDOS Firmware VPN Firewall 96

Security Affairs

DECEMBER 8, 2021

The vulnerability is an unauthenticated Remote Code Execution (RCE) vulnerability in Hikvision IP camera/NVR firmware, it was discovered by a security researcher that goes online with the moniker “Watchful IP.”. The expert pointed out that every firmware developed since 2016 has been tested and found to be vulnerable.

Firmware 121

Firmware DDOS Malware IoT 121

Security Boulevard

NOVEMBER 19, 2021

As you might expect, that company “strongly recommends that you download the latest firmware as soon as possible”. A serious and fresh vulnerability discovered in September led to a notice in November from NETGEAR.

Authentication 83

Authentication Firmware Network Security 83

Malwarebytes

DECEMBER 8, 2022

NetGear has made a hotfix available for its Nighthawk routers after researchers found a network misconfiguration in the firmware allowed unrestricted communication with the internet facing ports of the device listening through IPv6. It needs to be downloaded manually and applied following the instructions. No auto-update.

Firmware 84

Firmware Small Business Internet Internet 84

SecureList

MARCH 20, 2024

The same malware earlier had been found in the firmware of a kids’ smart watch by an Israeli manufacturer distributed mainly in Europe and the Middle East. The exact infection path is unclear, but there is an assumption that the infected application was incorporated into the firmware as a result of a possible supply chain attack.

Malware 85

Malware Mobile Firmware Spyware 85

Malwarebytes

NOVEMBER 8, 2023

Go to Control Panel > System > Firmware Update. The system will download and install the latest available update. If that doesn’t work for you, you can also download the update from the QNAP website. Go to Support > Download Center and then perform a manual update for your specific device.

Media 109

Media Firmware Passwords Ransomware 109

Security Affairs

AUGUST 23, 2022

This backdoor allows operators to download and install additional malicious modules. “To download modules, Android.Backdoor.854.origin In response, the server sends a list of plugins that the trojan will download, decrypt and run.” ” reads the analysis. 3104 starts a local server. ” concludes Dr.Web.

Mobile 92

Mobile Firmware Malware Wireless 92

Security Affairs

AUGUST 31, 2020

Hackers target QNAP NAS devices running multiple firmware versions vulnerable to a remote code execution (RCE) flaw addressed by the vendor 3 years ago. QNAP addressed the vulnerability with the release of firmware version 4.3.3 The researchers discovered that the issue resides in the CGI program. /httpd/cgi-bin/authLogout.cgi.

Firmware 118

Firmware Advertising Malware Internet 118

Security Boulevard

JUNE 21, 2023

On bootup, the malware will try to reach out to command-and-control (C2) threat infrastructure to receive instructions and download more payloads. Initially the malware has been downloading a payload to perform pay-per-click, or ad-click, fraud. Though I personally wouldn't like my devices being used for click-fraud either.

Firmware 105

Firmware DNS Malware Manufacturing 105

Security Affairs

AUGUST 23, 2022

The vulnerability is an unauthenticated Remote Code Execution (RCE) vulnerability in Hikvision IP camera/NVR firmware, it was discovered by a security researcher that goes online with the moniker “Watchful IP.”. The expert confirmed that every firmware developed since 2016 has been tested and found to be vulnerable.

Hacking 114

Hacking Firmware Internet Internet 114

Malwarebytes

AUGUST 23, 2022

The flaw is tracked as CVE-2021-36260 and was addressed by Hikvision via a firmware update in September 2021. If you are in doubt whether you are using a vulnerable product, there is a list of the vulnerable firmware versions in the researchers' post. The critical bug received a 9.8 Mitigation.

Firmware 78

Firmware VPN Internet Internet 78

Malwarebytes

MARCH 24, 2022

Users of every model of HP Color LaserJet, HP LaserJet, HP PageWide, HP Scanjet Enterprise, HP DeskJet, HP OfficeJet, HP DesignJet, and the HP Digital Sender Flow 8500 fn2 Document Capture Workstation are encouraged to check for updated firmware. How to update your printer.

Firmware 145

Firmware DNS Software 145

Security Affairs

APRIL 7, 2020

Upon the installation, the malicious app registers itself as a foreground service and extracts an encrypted payload that gathers information about the victim’s device (android_id, manufacturer, model, firmware version, etc.) malware that downloads the well known HEUR:Trojan.AndroidOS. ” continues Kaspersky.

Malware 120

Malware Firmware Manufacturing Mobile 120

Security Affairs

MARCH 1, 2023

ESET discovered a stealthy Unified Extensible Firmware Interface (UEFI) bootkit dubbed BlackLotus that is able to bypass the Secure Boot on Windows 11. Researchers from ESET discovered a new stealthy Unified Extensible Firmware Interface ( UEFI ) bootkit, named BlackLotus , that is able to bypass Secure Boot on Windows 11.

Firmware 94

Firmware Malware Hacking Security Defenses 94

Security Affairs

NOVEMBER 28, 2022

The Secure Boot is a security feature of the latest Unified Extensible Firmware Interface (UEFI) 2.3.1 Alternatively, the updated BIOS version can be downloaded here. Alternatively, updated BIOS version is available for download: [link] 3/3 — ESET research (@ESETresearch) November 28, 2022.

Firmware 126

Firmware Hacking Information Security 126