Security Affairs

OCTOBER 10, 2023

Many poorly configured security cameras are exposed to hacktivists in Israel and Palestine, placing the owners using them and the people around them at substantial risk. While this communication system is useful for transferring real-time data, it offers neither encryption nor lockout mechanisms against password-guessing.

Risk 96

Risk Encryption VPN Passwords 96

Pen Test

OCTOBER 12, 2023

Criminals may use hijacked drones for illegal surveillance, smuggling, or even as weapons. Countermeasures: To prevent drone signal hijacking, drone manufacturers and operators can implement encryption and authentication mechanisms for RF communication. It offers strong encryption and is considered secure for most applications.

Encryption 52

Encryption Firmware Surveillance Technology 52

SecureList

JUNE 20, 2023

The findings of the study reveal a number of serious security issues, including the use of hard-coded credentials, and an insecure firmware update process. We later managed to extract the firmware from the EEPROM for further static reverse engineering. Further hardware analysis of the circuit board helped us identify chips.

Firmware 92

Firmware Passwords Manufacturing Mobile 92

Security Affairs

MAY 14, 2023

ransom Dragon Breath APT uses double-dip DLL sideloading strategy International Press Cybercrime San Bernardino County pays $1.1-million ransom Dragon Breath APT uses double-dip DLL sideloading strategy International Press Cybercrime San Bernardino County pays $1.1-million

Data breaches 87

Data breaches DDOS Artificial Intelligence Ransomware 87

SecureList

NOVEMBER 14, 2023

However, instead of encrypting the data, it purposefully destroyed it in the affected systems. iOS devices may not be the only targets: other devices and operating systems could also face risks. The malware posed as ransomware, demanding money from the victims for “decrypting” their data.

Hacking 109

Hacking Energy and Utilities Media Malware 109

SecureList

NOVEMBER 26, 2021

It’s not often we observe a large-scale attack by APT threat actors – they usually avoid such attacks because they are too ‘noisy’ and risk drawing attention to the campaign. LuminousMoth is an exception. We observed a high number of infections; although we think the campaign was aimed at a few targets of interest.

Malware 92

Malware Banking Energy and Utilities Accountability 92

ForAllSecure

APRIL 22, 2021

So if you're looking at a typical enterprise network enterprise endpoint device, then your primary threats are going to be around confidentiality of data, those are going to be the most severe threats that you tend to look at or severe risks that you tend to look at. In some cases the artists simply don't have the resources to be updated.

IoT 52

IoT Hacking Internet Internet 52