Firmware, Information Security and InfoSec

HelloKitty ransomware gang targets vulnerable SonicWall devices

Security Affairs

JULY 18, 2021

“Through the course of collaboration with trusted third parties, SonicWall has been made aware of threat actors actively targeting Secure Mobile Access (SMA) 100 series and Secure Remote Access (SRA) products running unpatched and end-of-life (EOL) 8.x x firmware in an imminent ransomware campaign using stolen credentials.”

Ransomware

Ransomware Firmware Mobile InfoSec

Hacking IoT & RF Devices with BürtleinaBoard

Security Affairs

JULY 28, 2020

Flashing Firmware: Flashing BUSSide firmware inside the NodeMCU is quick and easy: # apt-get install esptool # git clone [link] # esptool --port /dev/ttyUSB0 write_flash 0x00000 BUSSide/FirmwareImages/*.bin. his majesty, the Firmware). In a couple of minutes you should get extracted the firmware. What do you do?

IoT

IoT Hacking Firmware InfoSec

News alert: Sternum and ChargePoint collaborate to enhance ChargePoint Home Flex Security

The Last Watchdog

JANUARY 22, 2024

ChargePoint, with its last firmware update, has disabled the HTTP server and updated the NTP client to address the issues. Thanks to the analysis and help of Sternum IoT, ChargePoint was able to correct weaknesses in CPH50, reduce the attack surface and thus improve the security of the product.

IoT

IoT InfoSec Firmware Manufacturing

Security Podcasting, Hacking Stories, and The State of Firmware Security with Paul Asadoorian

Security Boulevard

JUNE 25, 2023

Paul also shares with us some of his greatest hacking stories and don’t miss our lively […] The post Security Podcasting, Hacking Stories, and The State of Firmware Security with Paul Asadoorian appeared first on Shared Security Podcast.

Firmware

Firmware Hacking Internet Internet

How to Reverse Engineer, Sniff & Bruteforce Vulnerable RF Adult Toys with WHID Elite

Security Affairs

AUGUST 2, 2019

With all these data we can finally compose the packet that is transmitted to trigger the Vibration mode: Now we are ready to give it a try with the Standalone Firmware of WHID Elite and see if it is able to decode them too. Which means, we can easily fuzz and thus exhaust the space between them with the main WHID Elite Firmware.

Engineering

Engineering Firmware InfoSec Advertising

USBsamurai for Dummies: How To Make a Malicious USB Implant & Bypass Air-Gapped Environments for 10$. The Dumb-Proof Guide.

Security Affairs

SEPTEMBER 26, 2019

With this article I wanna bring more light regarding: Which are the differences between C-U0007 & C-U0012 How to Build USBsamurai with a C-U0012 How to flash the C-U0012 with the LIGHTSPEED Firmware How to Flash the C-U0007 with the G700 firmware to achieve better performances and get the Air-Gap Bypass feature How to setup LOGITacker.

Firmware

Firmware Encryption Advertising InfoSec

Hacking Radio Blasting Systems for Fun & Explosions

Security Affairs

AUGUST 5, 2019

With all these data we can finally compose the packet that is transmitted to trigger the 1st charge on Area 01: Now we are ready to give it a try with the Standalone Firmware of WHID Elite and see if it is able to decode them too. . OR “maybe” not! As assumed, WHID Elite can perfectly sniff and decode the packets. 15532238 All Fire.

Hacking

Hacking Firmware Engineering Advertising

Elon Musk Buys Twitter, Forgotten BIOS Updates, T-Shirt Outwits Facial Recognition

Security Boulevard

MAY 1, 2022

More than 100 different Lenovo laptop computers contain firmware-level vulnerabilities which is a great reminder about making sure you update the BIOS on your computer. The post Elon Musk Buys Twitter, Forgotten BIOS Updates, T-Shirt Outwits Facial Recognition appeared first on The Shared Security Show.

Firmware

Firmware Cybersecurity Surveillance InfoSec

Behind the Scenes: A Conversation with Virsec’s CTO of the Year

Security Boulevard

JUNE 10, 2021

Several weeks ago, we were thrilled to learn that our Founder and Chief Technology Officer, Satya Gupta, was named CTO of the Year in the 2021 Global InfoSec Awards. . Beyond that, he drives the basis of our creations and holds 48 patents in complex firmware architecture with products deployed to hundreds of thousands of users.

Marketing

Marketing InfoSec CISO Architecture

Y2k + 20: risk, COVID and "the Internet issue"

Notice Bored

JANUARY 9, 2021

So, egged-on by information security pro's and IT auditors (me, for instance), management took the risk seriously and invested significant resources into solving "the Y2k issue". which leaves our organisations, management and society at large asking themselves "What have the infosec pros ever done for us? Oh wait, you have one?

Internet

Internet Internet Risk InfoSec

The Hacker Mind Podcast: The Hacker Revolution Will Be Televised

ForAllSecure

FEBRUARY 22, 2023

There's the you know, these little ESP chips that have like, all in one Wi Fi and a little Linux or a little you know that OS that's just trivial and you download the firmware, you tweak a few things and you've got blinky lights, the magic can talk to other things and like do all sorts of cool stuff. Everybody's building their own badges.

Engineering

Engineering Hacking Marketing Wireless

The Hacker Mind Podcast: DEF CON Villages

ForAllSecure

AUGUST 2, 2022

Vamosi: DEF CON turns 30 This year what began simply as a going away party for a coworker has since evolved over the decades into an annual summer tradition for InfoSec leaders in Las Vegas, which now includes other events such as besides Las Vegas, Diana is known as hackers summer camp. Again, all all around the InfoSec community.

Hacking

Hacking Computers and Electronics InfoSec Software

The Hacker Mind Podcast: Hacking Industrial Control Systems

ForAllSecure

APRIL 26, 2022

So there’s a need, a definite need, for information security professionals to have access to industrial control systems -- not virtual, but actual hands on systems -- so they can learn. In a moment I’ll introduce you to someone who is trying to do that--bring ICS equipment to security conferences.

Hacking

Hacking Manufacturing Energy and Utilities Firmware

The Hacker Mind Podcast: The Right To Repair

ForAllSecure

FEBRUARY 10, 2021

To answer these questions, Paul Roberts, Editor-in-Chief of the Security Ledger, has founded securepairs.org , a group of infosec experts who are volunteering their free time to fight for the digital right to repair in local legislation. As Stuart Brand said back in 1984 “information wants to be free.”

InfoSec

InfoSec Manufacturing Technology Software

The Hacker Mind Podcast: The Right To Repair

ForAllSecure

FEBRUARY 10, 2021

To answer these questions, Paul Roberts, Editor-in-Chief of the Security Ledger, has founded securepairs.org , a group of infosec experts who are volunteering their free time to fight for the digital right to repair in local legislation. As Stuart Brand said back in 1984 “information wants to be free.”

InfoSec

InfoSec Manufacturing Technology Software

Cyber Security Informer

HelloKitty ransomware gang targets vulnerable SonicWall devices

Hacking IoT & RF Devices with BürtleinaBoard

Trending Sources

News alert: Sternum and ChargePoint collaborate to enhance ChargePoint Home Flex Security

Security Podcasting, Hacking Stories, and The State of Firmware Security with Paul Asadoorian

How to Reverse Engineer, Sniff & Bruteforce Vulnerable RF Adult Toys with WHID Elite

USBsamurai for Dummies: How To Make a Malicious USB Implant & Bypass Air-Gapped Environments for 10$. The Dumb-Proof Guide.

Hacking Radio Blasting Systems for Fun & Explosions

Elon Musk Buys Twitter, Forgotten BIOS Updates, T-Shirt Outwits Facial Recognition

Behind the Scenes: A Conversation with Virsec’s CTO of the Year

Y2k + 20: risk, COVID and "the Internet issue"

The Hacker Mind Podcast: The Hacker Revolution Will Be Televised

The Hacker Mind Podcast: DEF CON Villages

The Hacker Mind Podcast: Hacking Industrial Control Systems

The Hacker Mind Podcast: The Right To Repair

The Hacker Mind Podcast: The Right To Repair

Stay Connected