Security Affairs

JANUARY 6, 2021

The Taiwanese vendor Zyxel has recently addressed a critical vulnerability in its firmware, tracked as CVE-2020-29583 , related to the presence of a hardcoded undocumented secret account. Firmware version 4.60 The password for this account can be found in cleartext in the firmware.” reads the advisory published by NIST.

Firmware 112

Firmware Passwords Accountability VPN 112

Security Affairs

MAY 17, 2022

Below is the list of vulnerable products and related patches: AFFECTED MODEL AFFECTED FIRMWARE VERSION PATCH AVAILABILITY USG FLEX 100(W), 200, 500, 700 ZLD V5.00 USG FLEX 50(W) / USG20(W)-VPN ZLD V5.10 VPN series ZLD V4.60 If possible, enable automatic firmware updates. through ZLD V5.21 Patch 1 ZLD V5.30 through ZLD V5.21

Firewall 73

Firewall VPN Firmware Internet 73

Security Affairs

MAY 13, 2022

Below is the list of vulnerable products and related patches: Affected model Affected firmware version Patch availability USG FLEX 100(W), 200, 500, 700 ZLD V5.00 USG FLEX 50(W) / USG20(W)-VPN ZLD V5.10 VPN series ZLD V4.60 If possible, enable automatic firmware updates. through ZLD V5.21 Patch 1 ZLD V5.30 through ZLD V5.21

Firewall 70

Firewall Firmware VPN Wireless 70

Security Affairs

NOVEMBER 29, 2020

.” Experts used the search engines for Internet-connected devices, like Shodan.io, to search for ENIP-compatible internet-facing devices and discovered more than 8,000 systems exposed online. Experts was that vendors may have bought vulnerable versions of this stack before the 2012 update and are still using it in their firmware.

Hacking 126

Hacking Firmware Internet Internet 126

Krebs on Security

MAY 22, 2023

Chaput said the spammers used more than 1,500 Internet addresses across 400 providers to register new accounts, which then followed popular accounts on Mastodon and sent private mentions to the followers of those accounts. that were created from different Internet addresses in Vienna, Austria.

Scams 243

Scams DDOS Cryptocurrency Accountability 243

Security Affairs

SEPTEMBER 6, 2022

today detected the security threat DEADBOLT leveraging exploitation of Photo Station vulnerability to encrypt QNAP NAS that are directly connected to the Internet. QNAP Product Security Incident Response Team (QNAP PSIRT) had made the assessment and released the patched Photo Station app for the current version within 12 hours.”

Ransomware 85

Ransomware Internet Internet Encryption 85

Security Affairs

AUGUST 4, 2022

“The attack can be performed without user interaction if the management interface of the device has been configured to be internet facing. All the affected models have a patched firmware available for download on the vendor’s website.” ” reads the advisory published by Trellix. ” continues the analysis.

Hacking 98

Hacking Internet Internet Passwords 98

Security Affairs

MAY 1, 2021

“To further secure your device, do not expose your NAS to the internet. If you must connect your NAS to the internet, we highly recommend using a trusted VPN or a myQNAPcloud link.” The flaws fixed by the vendor are rated as medium and high severity security. ” continues the advisory.

Ransomware 114

Ransomware Cryptocurrency Malware Internet 114

Security Affairs

JUNE 23, 2021

A critical vulnerability, tracked as CVE-2021-20019 , in SonicWall VPN appliances was only partially patched last year and could allow a remote attacker to steal sensitive data. The flaw resides in the HTTP/HTTPS service used for product management as well as SSL VPN remote access. “An reads the analysis published by Tripwire.

VPN 86

VPN Firewall Firmware Authentication 86

Security Affairs

DECEMBER 22, 2022

Microsoft Threat Intelligence Center (MSTIC) researchers discovered a new variant of the Zerobot botnet (aka ZeroStresser) that was improved with the capabilities to target more Internet of Things (IoT) devices. Ensure secure configurations for devices: Change the default password to a strong one, and block SSH from external access.

IoT 116

IoT DDOS Malware Firmware 116

Security Affairs

OCTOBER 22, 2022

The Daixin Team group gains initial access to victims through virtual private network (VPN) servers. In one successful attack, the attackers likely exploited an unpatched vulnerability in the organization’s VPN server. In another compromise, the group leveraged on compromised credentials to access a legacy VPN server.

Ransomware 68

Ransomware VPN Cybercrime Accountability 68

Security Affairs

SEPTEMBER 22, 2021

Security experts from consulting firm GRIMM have discovered a vulnerability in Small Offices/Home Offices (SOHO) Netgear routers that could be exploited by a remote attacker to execute arbitrary code as root. The flaw, tracked as CVE-2021-40847, resides in the source of a third-party component included in the firmware of many Netgear devices.

DNS 129

DNS Firmware VPN Risk 129

Security Affairs

JULY 8, 2022

Preliminary investigation indicates that Checkmate attacks via SMB services exposed to the internet, and employs a dictionary attack to break accounts with weak passwords.” ……… “ The vendor recommends not exposing the SMB service to the internet and using VPN to access the NAS and reduce the attack surface.

Ransomware 93

Ransomware Encryption Passwords Internet 93

Security Affairs

SEPTEMBER 3, 2021

. “Cyber criminal threat actors exploit network vulnerabilities to exfiltrate data and encrypt systems in a sector that is increasingly reliant on smart technologies, industrial control systems, and internet-based automation systems. Install updates/patch operating systems, software, and firmware as soon as they are released.

Ransomware 97

Ransomware Passwords Backups Firmware 97

Malwarebytes

SEPTEMBER 3, 2021

.” Internet of Things. Agriculture may not be the first industry you associate with cybersecurity problems, but we all need to aware of the risks created by connecting this ancient part of our food supply chain to the Internet. The state of IoT is poor enough as it is, security wise. Consider installing and using a VPN.

Ransomware 139

Ransomware Manufacturing Passwords Internet 139

Kali Linux

FEBRUARY 27, 2024

For anyone interested in Internet infrastructure, we encourage you to read it, that’s a well-written blog post right there, waiting for you. Now, users can effortlessly copy their VPN IP address to the clipboard with just a click , simplifying the workflow and enhancing productivity for our users.

Software 145

Software Firmware VPN Internet 145

Security Affairs

MARCH 23, 2021

The vendor released security updates for all these devices and urges customers to update their installs, it also released mitigations to address the flaws. “GE strongly recommends users with impacted firmware versions update their UR devices to UR firmware Version 8.10, or greater to resolve these vulnerabilities.

Firmware 78

Firmware VPN Firewall Risk 78

Security Affairs

APRIL 11, 2021

prize pool Zerodium will pay $300K for WordPress RCE exploits Crooks abuse website contact forms to deliver IcedID malware Hackers compromised APKPure client to distribute infected Apps This man was planning to kill 70% of Internet in a bomb attack against AWS. Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini.

Cyber Attacks 53

Cyber Attacks Firmware Malware VPN 53

Security Affairs

MARCH 16, 2022

“After effectively disabling MFA, Russian state-sponsored cyber actors were able to successfully authenticate to the victim’s virtual private network (VPN) as non-administrator users and make Remote Desktop Protocol (RDP) connections to Windows domain controllers [ T1133 ]. ” continues the analysis.

Accountability 91

Accountability Passwords Authentication Firmware 91

Security Affairs

OCTOBER 13, 2020

The number of sensors and smart devices connected to the internet is exponentially rising, which are the 5 Major Vulnerabilities for IoT devices. A hacker managed to identify a weak spot in a security camera model. Unfortunately, at that moment, there were over 300,000 of those cameras connected to the internet.

IoT 135

IoT Cybersecurity Manufacturing Internet 135

Security Affairs

APRIL 2, 2021

In March 2021, government experts observed state sponsored hackers scanning the internet for servers vulnerable to the above flaws, the attackers were probing systems on ports 4443, 8443, and 10443. Implement a recovery plan to restore sensitive or proprietary data from a physically separate, segmented, secure location (e.g.,

Passwords 66

Passwords Government Firmware Accountability 66

Security Affairs

MAY 13, 2021

Update software , including operating systems, applications, and firmware on IT network assets, in a timely manner. other than VPN gateways, mail ports, web ports). Filter network traffic to prohibit ingress and egress communications with known malicious IP addresses.

Ransomware 110

Ransomware Healthcare Phishing Risk 110

Security Affairs

JULY 31, 2019

The attacker could then download the database and disclose login information, then use it to gain full access to the system. “To update to the latest firmware, each user should select the “Check for Upgrade” option in the “Centrals” menu in the GUI. Also recognize that VPN is only as secure as the connected devices.”

Backups 58

Backups Authentication Advertising Firmware 58

The Last Watchdog

JUNE 4, 2019

Maryland was one of the very first states to recognize the importance of information security, not only as a critical issue for the nation, but also as a strategic industry for the state,” said Governor Larry Hogan. Also disrupting new technology categories are BlueRidge AI and Refirm Labs.

Cybersecurity 193

Cybersecurity Computers and Electronics Technology Marketing 193

Security Affairs

DECEMBER 27, 2021

Researchers found multiple backdoors in popular VoIP (voice over Internet protocol) appliance made by the German manufacturer Auerswald. Researchers from RedTeam Pentesting discovered multiple backdoors in a popular VoIP (voice over Internet protocol) appliance made by the German manufacturer Auerswald. “Firmware Update 8.2B

Firmware 92

Firmware Manufacturing Passwords Penetration Testing 92

Security Affairs

NOVEMBER 14, 2023

The vulnerability is an improper error message handling in Zyxel ZyWALL/USG series firmware versions 4.60 through 4.73, VPN series firmware versions 4.60 through 5.35, USG FLEX series firmware versions 4.60 through 5.35, and ATP series firmware versions 4.60 through 5.35. ” reported the SektorCERT.

Cyber Attacks 112

Cyber Attacks Firmware Firewall VPN 112

Security Affairs

JANUARY 14, 2024

The vulnerability is an improper error message handling in Zyxel ZyWALL/USG series firmware versions 4.60 through 4.73, VPN series firmware versions 4.60 through 5.35, USG FLEX series firmware versions 4.60 through 5.35, and ATP series firmware versions 4.60 through 5.35. reported the SektorCERT.

Firewall 103

Firewall Firmware Cyber Attacks VPN 103

Pen Test Partners

OCTOBER 9, 2023

In essence, it is a view of the application and its environment through the lens of security. Threat modeling can be applied to a wide range of things, including software, applications, systems, networks, distributed systems, Internet of Things (IoT) devices, and business processes. Deploy malicious firmware. Frameworks 2.1.

IoT 52

IoT Firmware Mobile Manufacturing 52