Firmware, Hacking, Information Security and Surveillance

An RCE in Annke video surveillance product allows hacking the device

Security Affairs

AUGUST 27, 2021

Researchers from Nozomi Networks discovered a critical vulnerability that can be exploited to hack a video surveillance product made by Annke. The vulnerability, tracked as CVE-2021-32941 can be exploited by an attacker to hack a video surveillance product made by Annke, a provider of home and business security solutions.

Surveillance

Surveillance Hacking Firmware Manufacturing

White hat hackers gained access more than 150,000 surveillance cameras

Security Affairs

MARCH 10, 2021

A group of hackers claimed to have compromised more than 150,000 surveillance cameras at banks, jails, schools, and prominent companies like Tesla and Equinox. A group of US hackers claimed to have gained access to footage from 150,000 security cameras at banks, jails, schools, healthcare clinics, and prominent organizations.

Surveillance

Surveillance Hacking Banking Firmware

Second-ever UEFI rootkit used in North Korea-themed attacks

Security Affairs

OCTOBER 5, 2020

A China-linked threat actor used UEFI malware based on code from Hacking Team in attacks aimed at organizations with an interest in North Korea. The experts were investigating several suspicious UEFI firmware images when discovered four components, some of which were borrowing the source code a Hacking Team spyware.

Firmware

Firmware Spyware Surveillance Hacking

Chipmaker Qualcomm warns of three actively exploited zero-days

Security Affairs

OCTOBER 4, 2023

Google Threat Analysis Group and Google Project Zero experts focus on attacks carried out by nation-state actors or surveillance firms, this means that one of these threat actors may be behind the exploitation of the Qualcomm flaws. WLAN Firmware Internal CVE-2023-24855 : Use of Out-of-range Pointer Offset in Modem.

Firmware

Firmware Surveillance Authentication Manufacturing

JekyllBot:5 flaws allow hacking TUG autonomous mobile robots in hospitals

Security Affairs

APRIL 13, 2022

Researchers discovered five vulnerabilities that can be exploited to remotely hack hospital Aethon’s TUG autonomous mobile robots. According to a US CISA advisory, the successful exploitation of these flaws could cause a denial-of-service condition, allow full control of robot functions, or expose sensitive information. .”

Mobile

Mobile Hacking Firmware Surveillance

3.5m IP cameras exposed, with US in the lead

Security Affairs

DECEMBER 14, 2022

Businesses and homeowners increasingly rely on internet protocol (IP) cameras for surveillance. All too often, this gives them a false sense of security: when in fact, threat actors can not only access and watch your camera feed but exploit the unsecured device to hack into your network. SecurityAffairs – hacking, IP cameras).

Surveillance

Surveillance Manufacturing Passwords Internet

Kalay cloud platform flaw exposes millions of IoT devices to hack

Security Affairs

AUGUST 17, 2021

Most of the devices using the platform are video surveillance products such as IP cameras and baby monitors, an attacker could exploit this flaw to eavesdrop audio and video data. This varies from device to device but typically is used for device telemetry, firmware updates, and device control.” ” continues Mandiant.

IoT

IoT Hacking Social Engineering Firmware

June 2023 Security Update for Android fixed Arm Mali GPU bug used by spyware?

Security Affairs

JUNE 7, 2023

June 2023 security update for Android released by Google fixes about fifty flaws, including an Arm Mali GPU bug exploited by surveillance firms in their spyware. The June 2023 Android Security Bulletin provides details about the fix for more than fifty vulnerabilities affecting Android devices.

Spyware

Spyware Surveillance Firmware Hacking

Experts observed for the first time FinFisher infections involving usage of a UEFI bootkit

Security Affairs

SEPTEMBER 28, 2021

Experts spotted a new variant of the FinFisher surveillance spyware that is able to hijack and replace the Windows UEFI bootloader to infect Windows machines. SecurityAffairs – hacking, FinFisher). The post Experts observed for the first time FinFisher infections involving usage of a UEFI bootkit appeared first on Security Affairs.

Spyware

Spyware Surveillance Firmware Malware

HID Mercury Access Controller flaws could allow to unlock Doors

Security Affairs

JUNE 12, 2022

Researchers from security firm Trellix discovered some critical vulnerabilities in HID Mercury Access Controllers that can be exploited by attackers to remotely unlock doors. The flaws impact products manufactured by LenelS2, a provider of advanced physical security solutions (i.e. ” reads the post published by Trellix.

Firmware

Firmware Penetration Testing Manufacturing Authentication

Beastmode Mirai botnet now includes exploits for Totolink routers

Security Affairs

APRIL 2, 2022

The threat actors added TOTOLINK exploits just a week after the exploit codes were publicly released on GitHub in the attempt to compromise the largest number of devices as possible before the owners upgrade to the latest firmware releases. TOTOLINK has already addressed these flaws with the release of new firmware for vulnerable devices.

DDOS

DDOS Firmware Surveillance IoT

Security Affairs newsletter Round 376 by Pierluigi Paganini

Security Affairs

JULY 31, 2022

Security Affairs newsletter Round 375 by Pierluigi Paganini A database containing data of 5.4 SecurityAffairs – hacking, newsletter). The post Security Affairs newsletter Round 376 by Pierluigi Paganini appeared first on Security Affairs. and Blackmatter ransomware U.S. and Blackmatter ransomware U.S.

Firmware

Firmware Surveillance Malware DDOS

Swiss expert Till Kottmann indicted for conspiracy, wire fraud, and aggravated identity theft

Security Affairs

MARCH 21, 2021

A group of US hackers recently claimed to have gained access to footage from 150,000 security cameras at banks, jails, schools, healthcare clinics, and prominent organizations. Once Verkada became aware of the hack, it has disabled all internal administrator accounts to prevent any unauthorised access. ” continues the DoJ.

Identity Theft

Identity Theft Computers and Electronics Surveillance Hacking

Google TAG shares details about exploit chains used to install commercial spyware

Security Affairs

MARCH 29, 2023

At the time of delivery, the latest Samsung firmware had not included a fix for this vulnerability. Even smaller surveillance vendors have access to 0-days, and vendors stockpiling and using 0-day vulnerabilities in secret pose a severe risk to the Internet.” This vulnerability grants the attacker system access.

Spyware

Spyware Surveillance Firmware Internet

Security Affairs newsletter Round 419 by Pierluigi Paganini – International edition

Security Affairs

MAY 14, 2023

ransom Dragon Breath APT uses double-dip DLL sideloading strategy International Press Cybercrime San Bernardino County pays $1.1-million ransom Dragon Breath APT uses double-dip DLL sideloading strategy International Press Cybercrime San Bernardino County pays $1.1-million

Data breaches

Data breaches DDOS Artificial Intelligence Ransomware

QNAP warns of a new wave of DeadBolt ransomware attacks against its NAS devices

Security Affairs

MAY 20, 2022

At the end of January, QNAP forced the firmware update for its Network Attached Storage (NAS) devices to protect its customers against the DeadBolt ransomware. QNAP QVR is a video surveillance solution of the Taiwanese vendor which is hosted on its NAS devices and doesn’t require any extra software. SecurityAffairs – hacking, NAS).

Ransomware

Ransomware Internet Internet Firmware

Security experts disclosed Wyze data leak

Security Affairs

DECEMBER 29, 2019

According to Twelve Security , the exposed data includes: User name and email of those who purchased cameras and then connected them to their home 24% of the 2.4 Experts from Twelve Security claimed they found API tokens that would have allowed hackers to access Wyze user accounts from any iOS or Android device. Pierluigi Paganini.

IoT

IoT Accountability Advertising Wireless

Expert found Russia’s SORM surveillance equipment leaking user data

Security Affairs

AUGUST 30, 2019

A Russian security researcher has found that hardware wiretapping equipment composing Russia’s SORM surveillance system had been leaking user data. SORM is a mass surveillance system that allows the Government of Moscow to track online activities of single individuals thanks to the support of the Russian ISPs. million). .

Surveillance

Surveillance Firmware Mobile Advertising

MoonBounce UEFI implant spotted in a targeted APT41 attack

Security Affairs

JANUARY 21, 2022

At the end of 2021, researchers discovered a UEFI firmware-level compromise by analyzing logs from its Firmware Scanner. Threat actors compromised a single component within the firmware image to intercept the original execution flow of the machine’s boot sequence and inject the sophisticated implant. Pierluigi Paganini.

Firmware

Firmware Malware Spyware Surveillance

Cyber Security Informer

An RCE in Annke video surveillance product allows hacking the device

White hat hackers gained access more than 150,000 surveillance cameras

Trending Sources

Second-ever UEFI rootkit used in North Korea-themed attacks

Chipmaker Qualcomm warns of three actively exploited zero-days

JekyllBot:5 flaws allow hacking TUG autonomous mobile robots in hospitals

3.5m IP cameras exposed, with US in the lead

Kalay cloud platform flaw exposes millions of IoT devices to hack

June 2023 Security Update for Android fixed Arm Mali GPU bug used by spyware?

Experts observed for the first time FinFisher infections involving usage of a UEFI bootkit

HID Mercury Access Controller flaws could allow to unlock Doors

Beastmode Mirai botnet now includes exploits for Totolink routers

Security Affairs newsletter Round 376 by Pierluigi Paganini

Swiss expert Till Kottmann indicted for conspiracy, wire fraud, and aggravated identity theft

Google TAG shares details about exploit chains used to install commercial spyware

Security Affairs newsletter Round 419 by Pierluigi Paganini – International edition

QNAP warns of a new wave of DeadBolt ransomware attacks against its NAS devices

Security experts disclosed Wyze data leak

Expert found Russia’s SORM surveillance equipment leaking user data

MoonBounce UEFI implant spotted in a targeted APT41 attack

Stay Connected