Security Affairs

JUNE 19, 2023

ASUS addressed critical vulnerabilities in multiple router models, urging customers to immediately install firmware updates. ASUS is warning customers to update some router models to the latest firmware to address critical vulnerabilities. “Update your router to the latest firmware. ” ASUS added.

Firmware 80

Firmware VPN Wireless Passwords 80

Security Affairs

JULY 22, 2023

The cause of the vulnerability is the improper error message handling in Zyxel ZyWALL/USG series firmware versions 4.60 through 4.73, VPN series firmware versions 4.60 through 5.35, USG FLEX series firmware versions 4.60 through 5.35, and ATP series firmware versions 4.60 through 5.35.

DDOS 95

DDOS Firmware VPN Firewall 95

Malwarebytes

AUGUST 23, 2022

The flaw is tracked as CVE-2021-36260 and was addressed by Hikvision via a firmware update in September 2021. Given the amount of available information, it is trivial even for a “copy and paste criminal,” to make use of the unpatched cameras. The critical bug received a 9.8 The critical bug received a 9.8

Firmware 84

Firmware VPN Internet Internet 84

Malwarebytes

OCTOBER 19, 2022

As a countermeasure, QNAP pushed out an automatic, forced, update with firmware containing the latest security updates to protect against the attackers' DeadBolt ransomware, which annoyed part of its userbase. Make sure that the firmware of your device and all the software running on it is up to date.

Ransomware 97

Ransomware Firmware VPN Cybercrime 97

Malwarebytes

SEPTEMBER 22, 2021

In a detailed post on Github , security researcher Watchful_IP describes how he found that the majority of the recent camera product ranges of Hikvision cameras are susceptible to a critical, unauthenticated, remote code execution (RCE) vulnerability, even with the latest firmware. Hangzhou Hikvision Digital Technology Co.,

Firmware 135

Firmware Surveillance Marketing VPN 135

Approachable Cyber Threats

JANUARY 17, 2023

We need access to the internet wherever we go here in the digital age. Our reliance on the internet means we tend to look for convenient ways to connect our electronic devices to the internet when we aren’t home - usually relying on public Wi-Fi at coffee shops, restaurants, hotels, airports, etc. Is public Wi-Fi safe to use?”

Encryption 98

Encryption Internet Internet VPN 98

eSecurity Planet

OCTOBER 1, 2021

The National Security Agency (NSA) and the Cybersecurity and Infrastructure Security Agency (CISA) have released guidance and best practices for securing virtual private network (VPN) solutions. What might be most striking about the document is how many security steps and solutions it takes to properly secure VPN connections.

VPN 109

VPN Authentication Passwords Software 109

Security Affairs

NOVEMBER 29, 2020

“Claroty has privately disclosed details to Real Time Automation (RTA), informing the vendor of a critical vulnerability in its proprietary 499ES EtherNet/IP (ENIP) stack. Experts was that vendors may have bought vulnerable versions of this stack before the 2012 update and are still using it in their firmware. Pierluigi Paganini.

Hacking 121

Hacking Firmware Internet Internet 121

Security Affairs

JANUARY 6, 2021

The Taiwanese vendor Zyxel has recently addressed a critical vulnerability in its firmware, tracked as CVE-2020-29583 , related to the presence of a hardcoded undocumented secret account. Firmware version 4.60 The password for this account can be found in cleartext in the firmware.” reads the advisory published by NIST.

Firmware 108

Firmware Passwords Accountability VPN 108

eSecurity Planet

JANUARY 16, 2024

The problem: Ivanti announced two vulnerabilities that affect Ivanti Connect Secure VPN and Ivanti Policy Secure products. The fix: Look at Microsoft’s Patch Tuesday update from last June to find patch information for the SharePoint vulnerability. Affected versions include: Junos OS versions earlier than 20.4R3-S9 Junos OS 21.2

Firewall 109

Firewall Firmware IoT Authentication 109

Security Affairs

MAY 17, 2022

Below is the list of vulnerable products and related patches: AFFECTED MODEL AFFECTED FIRMWARE VERSION PATCH AVAILABILITY USG FLEX 100(W), 200, 500, 700 ZLD V5.00 USG FLEX 50(W) / USG20(W)-VPN ZLD V5.10 VPN series ZLD V4.60 If possible, enable automatic firmware updates. through ZLD V5.21 Patch 1 ZLD V5.30 through ZLD V5.21

Firewall 71

Firewall VPN Firmware Internet 71

Security Affairs

MAY 13, 2022

Below is the list of vulnerable products and related patches: Affected model Affected firmware version Patch availability USG FLEX 100(W), 200, 500, 700 ZLD V5.00 USG FLEX 50(W) / USG20(W)-VPN ZLD V5.10 VPN series ZLD V4.60 If possible, enable automatic firmware updates. through ZLD V5.21 Patch 1 ZLD V5.30 through ZLD V5.21

Firewall 69

Firewall Firmware VPN Wireless 69

SecureWorld News

OCTOBER 8, 2023

Armed with this information, hackers often try to exploit vulnerabilities in home devices and networks to breach corporate networks. Turn off the internet connection if you will not be using it for an extended period. Here are some key safety guidelines to consider: Restrict who can view your personal information.

Firmware 86

Firmware IoT Accountability Passwords 86

Security Affairs

SEPTEMBER 22, 2021

The flaw, tracked as CVE-2021-40847, resides in the source of a third-party component included in the firmware of many Netgear devices. The daemon connects to Circle and Netgear to obtain version information and updates to the circled daemon and its filtering database. R6700v3 – 1.0.4.106 R6900 – 1.0.2.16

DNS 125

DNS Firmware VPN Risk 125

SecureList

JUNE 3, 2024

The attackers were able to bypass this hardware-based security protection using another hardware feature of Apple-designed SoCs (System on a Chip): they did this by writing the data, destination address and data hash to unknown hardware registers of the chip that are not used by the firmware.

Banking 81

Banking Malware Computers and Electronics Mobile 81

Krebs on Security

MAY 22, 2023

Chaput said the spammers used more than 1,500 Internet addresses across 400 providers to register new accounts, which then followed popular accounts on Mastodon and sent private mentions to the followers of those accounts. that were created from different Internet addresses in Vienna, Austria.

Scams 249

Scams DDOS Cryptocurrency Accountability 249

Security Affairs

OCTOBER 22, 2022

The group focused on the HPH Sector with ransomware operations that aimed at deploying ransomware and exfiltrating personal identifiable information (PII) and patient health information (PHI) threatening to release the stolen data if a ransom is not paid. The threat actors obtained the VPN credentials through phishing attacks.

Ransomware 67

Ransomware VPN Cybercrime Accountability 67

Security Affairs

AUGUST 4, 2022

“The attack can be performed without user interaction if the management interface of the device has been configured to be internet facing. All the affected models have a patched firmware available for download on the vendor’s website.” ” reads the advisory published by Trellix. ” continues the analysis.

Hacking 97

Hacking Internet Internet Passwords 97

Security Affairs

SEPTEMBER 6, 2022

today detected the security threat DEADBOLT leveraging exploitation of Photo Station vulnerability to encrypt QNAP NAS that are directly connected to the Internet. “We strongly urge that their QNAP NAS should not be directly connected to the Internet. . “QNAP Systems, Inc. ” reads the advisory published by the vendor.

Ransomware 82

Ransomware Internet Internet Encryption 82

Security Affairs

MAY 1, 2021

“To further secure your device, do not expose your NAS to the internet. If you must connect your NAS to the internet, we highly recommend using a trusted VPN or a myQNAPcloud link.” You can check the product support status to see the latest updates available to your NAS model.” ” continues the advisory.

Ransomware 109

Ransomware Cryptocurrency Malware Internet 109

Security Affairs

JUNE 23, 2021

A critical vulnerability, tracked as CVE-2021-20019 , in SonicWall VPN appliances was only partially patched last year and could allow a remote attacker to steal sensitive data. The flaw resides in the HTTP/HTTPS service used for product management as well as SSL VPN remote access. “An reads the analysis published by Tripwire.

VPN 82

VPN Firewall Firmware Authentication 82

Security Affairs

DECEMBER 22, 2022

Microsoft Threat Intelligence Center (MSTIC) researchers discovered a new variant of the Zerobot botnet (aka ZeroStresser) that was improved with the capabilities to target more Internet of Things (IoT) devices. Maintain device health with updates: Make sure devices are up to date with the latest firmware and patches.

IoT 113

IoT DDOS Malware Firmware 113

Kali Linux

NOVEMBER 27, 2022

To enable wireless support, we need to find: The kernel Wi-Fi modules that need to be in the initramfs (Depends on hardware) The Wi-Fi firmware files that need to be in the initramfs (Depends on hardware) The Wireless interface name (Kali defaults to: wlan0 ) Additional packages to increase functionally. bin firmware: brcm/brcmfmac*-sdio.*.txt

Firmware 52

Firmware Wireless Passwords VPN 52

Security Affairs

SEPTEMBER 3, 2021

. “Cyber criminal threat actors exploit network vulnerabilities to exfiltrate data and encrypt systems in a sector that is increasingly reliant on smart technologies, industrial control systems, and internet-based automation systems. Install updates/patch operating systems, software, and firmware as soon as they are released.

Ransomware 93

Ransomware Passwords Backups Firmware 93

Security Affairs

MARCH 23, 2021

The flaws could be exploited to access sensitive information, reboot the device, trigger a denial-of-service condition, and gain privileged access. “Successful exploitation of these vulnerabilities could allow an attacker to access sensitive information, reboot the UR, gain privileged access, or cause a denial-of-service condition.”

Firmware 76

Firmware VPN Firewall Risk 76

Malwarebytes

SEPTEMBER 3, 2021

” Internet of Things. Agriculture may not be the first industry you associate with cybersecurity problems, but we all need to aware of the risks created by connecting this ancient part of our food supply chain to the Internet. Install updates/patch operating systems, software, and firmware as soon as they are released.

Ransomware 139

Ransomware Manufacturing Passwords Internet 139

Security Affairs

JULY 8, 2022

Preliminary investigation indicates that Checkmate attacks via SMB services exposed to the internet, and employs a dictionary attack to break accounts with weak passwords.” ……… “ The vendor recommends not exposing the SMB service to the internet and using VPN to access the NAS and reduce the attack surface.

Ransomware 90

Ransomware Encryption Passwords Internet 90

Security Affairs

APRIL 4, 2019

Firmware updates that address this vulnerability are not currently available. The first one could be exploited by a remote and unauthenticated attacker with admin privileges to obtain sensitive information ( CVE-2019-1653 ), while the second one can be exploited for command injection ( CVE-2019-1652 ). through 1.4.2.20.

Small Business 78

Small Business Firmware Advertising VPN 78

Security Affairs

SEPTEMBER 4, 2019

The first issue is an information disclosure flaw via unauthenticated external DNS requests that affect Zyxel devices from the USG, UAG, ATP, VPN and NXC series. This FTP server can be accessed with hardcoded credentials that are embedded in the firmware of the AP. ” reads the advisory.

DNS 77

DNS Hacking Firmware Wireless 77

Kali Linux

FEBRUARY 27, 2024

For anyone interested in Internet infrastructure, we encourage you to read it, that’s a well-written blog post right there, waiting for you. You might want to look at their product brief for a more thorough description of the service, and email mirror at fcix dot net for more information. the Fremont Cabal Internet Exchange.

Software 145

Software Firmware VPN Internet 145

CyberSecurity Insiders

NOVEMBER 1, 2022

Everyone who uses the internet or deals with a digital file or task uses an endpoint device. Back then, endpoint security focused on computers, which meant the installation of antivirus, malware protection, firewall, and (sometimes) VPN in every computer. Unfortunately, it is no longer as simple as it used to be in the past.

IoT 120

IoT Antivirus Threat Detection Cyber threats 120

Security Affairs

APRIL 11, 2021

prize pool Zerodium will pay $300K for WordPress RCE exploits Crooks abuse website contact forms to deliver IcedID malware Hackers compromised APKPure client to distribute infected Apps This man was planning to kill 70% of Internet in a bomb attack against AWS. Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini.

Cyber Attacks 53

Cyber Attacks Firmware Malware VPN 53

Security Affairs

OCTOBER 13, 2020

The number of sensors and smart devices connected to the internet is exponentially rising, which are the 5 Major Vulnerabilities for IoT devices. Unfortunately, at that moment, there were over 300,000 of those cameras connected to the internet. Nowadays, malware is an indispensable part of the internet (even if we do not like it).

IoT 131

IoT Cybersecurity Manufacturing Internet 131

Security Affairs

MARCH 16, 2022

“After effectively disabling MFA, Russian state-sponsored cyber actors were able to successfully authenticate to the victim’s virtual private network (VPN) as non-administrator users and make Remote Desktop Protocol (RDP) connections to Windows domain controllers [ T1133 ]. ” continues the analysis.

Accountability 90

Accountability Passwords Authentication Firmware 90

Adam Levin

FEBRUARY 10, 2020

Most likely you didn’t pause before you clicked, and got phished or compromised in some other way–possibly by an internet of things device connected to your home network. Consider requiring employees to log in to a VPN (virtual private network), especially if they’re connecting to the company network remotely.

Passwords 245

Passwords Phishing Password Management Accountability 245

Security Affairs

APRIL 2, 2021

In March 2021, government experts observed state sponsored hackers scanning the internet for servers vulnerable to the above flaws, the attackers were probing systems on ports 4443, 8443, and 10443. Install updates/patch operating systems, software, and firmware as soon as updates/patches are released. •

Passwords 64

Passwords Government Firmware Accountability 64

Security Affairs

OCTOBER 20, 2018

CVE-2018-18472 – XXE and Unauthenticated Remote Command Execution in Axentra Hipserv NAS firmware. . It’s used in different devices from different vendors, the affected devices sharing the firmware are: Netgear Stora. The company provides a firmware with a web interface that mainly uses PHP as a serverside language.

Firmware 59

Firmware IoT VPN Authentication 59