Firmware, Internet, Presentation and VPN

MyBook Users Urged to Unplug Devices from Internet

Krebs on Security

JUNE 25, 2021

Hard drive giant Western Digital is urging users of its MyBook Live brand of network storage drives to disconnect them from the Internet, warning that malicious hackers are remotely wiping the drives using a critical flaw that can be triggered by anyone who knows the Internet address of an affected device.

Internet

Internet Internet Backups Small Business

Who and What is Behind the Malware Proxy Service SocksEscort?

Krebs on Security

JULY 25, 2023

Researchers this month uncovered a two-year-old Linux-based remote access trojan dubbed AVrecon that enslaves Internet routers into botnet that bilks online advertisers and performs password-spraying attacks. SocksEscort[.]com com , is what’s known as a “SOCKS Proxy” service. WHO’S BEHIND SOCKSESCORT?

Malware

Malware VPN Internet Internet

Zyxel 0day Affects its Firewall Products, Too

Krebs on Security

FEBRUARY 26, 2020

Today, Zyxel acknowledged the same flaw is present in many of its firewall products. “We’ve now completed the investigation of all Zyxel products and found that firewall products running specific firmware versions are also vulnerable,” Zyxel wrote in an email to KrebsOnSecurity. Patch 0 through ZLD V4.35

Firewall

Firewall Firmware VPN IoT

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

Unauthenticated RCE can allow hacking DrayTek Vigor routers without user interaction

Security Affairs

AUGUST 4, 2022

“The attack can be performed without user interaction if the management interface of the device has been configured to be internet facing. All the affected models have a patched firmware available for download on the vendor’s website.” ” reads the advisory published by Trellix. ” continues the analysis.

Hacking

Hacking Internet Internet Passwords

Interview With a Crypto Scam Investment Spammer

Krebs on Security

MAY 22, 2023

Chaput said the spammers used more than 1,500 Internet addresses across 400 providers to register new accounts, which then followed popular accounts on Mastodon and sent private mentions to the followers of those accounts. that were created from different Internet addresses in Vienna, Austria.

Scams

Scams DDOS Cryptocurrency Accountability

Some Zyxel devices can be hacked via DNS requests

Security Affairs

SEPTEMBER 4, 2019

The first issue is an information disclosure flaw via unauthenticated external DNS requests that affect Zyxel devices from the USG, UAG, ATP, VPN and NXC series. An unauthenticated attacker could exploit the flaw to check whether a domain is present or not via the web login interface. ” reads the advisory.

DNS

DNS Hacking Firmware Wireless

Remotely Accessing Secure Kali Pi

Kali Linux

NOVEMBER 27, 2022

To enable wireless support, we need to find: The kernel Wi-Fi modules that need to be in the initramfs (Depends on hardware) The Wi-Fi firmware files that need to be in the initramfs (Depends on hardware) The Wireless interface name (Kali defaults to: wlan0 ) Additional packages to increase functionally. bin firmware: brcm/brcmfmac*-sdio.*.txt

Firmware

Firmware Wireless Passwords VPN

Russia-linked threats actors exploited default MFA protocol and PrintNightmare bug to compromise NGO cloud

Security Affairs

MARCH 16, 2022

“After effectively disabling MFA, Russian state-sponsored cyber actors were able to successfully authenticate to the victim’s virtual private network (VPN) as non-administrator users and make Remote Desktop Protocol (RDP) connections to Windows domain controllers [ T1133 ]. ” continues the analysis. ” continues the analysis.

Accountability

Accountability Passwords Authentication Firmware

The State of Endpoint Security Management in 2022: It’s Worse Than You Suspect

CyberSecurity Insiders

NOVEMBER 1, 2022

Everyone who uses the internet or deals with a digital file or task uses an endpoint device. Back then, endpoint security focused on computers, which meant the installation of antivirus, malware protection, firewall, and (sometimes) VPN in every computer. Unfortunately, it is no longer as simple as it used to be in the past.

IoT

IoT Antivirus Threat Detection Cyber threats

IoT Cybersecurity: 5 Major Vulnerabilities and How to Tackle Them

Security Affairs

OCTOBER 13, 2020

The number of sensors and smart devices connected to the internet is exponentially rising, which are the 5 Major Vulnerabilities for IoT devices. Unfortunately, at that moment, there were over 300,000 of those cameras connected to the internet. Nowadays, malware is an indispensable part of the internet (even if we do not like it).

IoT

IoT Cybersecurity Manufacturing Internet

GUEST ESSAY: The story behind how DataTribe is helping to seed ‘Cybersecurity Valley’ in Maryland

The Last Watchdog

JUNE 4, 2019

While Maryland focuses on looming prospects in coming years, it also enjoys the present, knowing there are plenty of openings for cyber pros, and that the number will only keep growing. ReFirm Labs, meanwhile, has developed a radically new approach to securing heretofore insecure connected devices through firmware validation.

Cybersecurity

Cybersecurity Computers and Electronics Technology Marketing

Overview of IoT threats in 2023

SecureList

SEPTEMBER 21, 2023

Malware that arrives late to the party will search for certain process names, scan ports, and analyze the device memory for malicious patterns to suppress infections already present on the device. They can be made to serve as routers (proxies or VPN servers) to anonymize illicit traffic.

IoT

IoT DDOS Passwords Malware

IoT Secure Development Guide

Pen Test Partners

OCTOBER 9, 2023

Threat modeling can be applied to a wide range of things, including software, applications, systems, networks, distributed systems, Internet of Things (IoT) devices, and business processes. Schematics, code outlines, dependencies, and bills-of-materials should start to be presented even if they are not yet set in stone.

IoT

IoT Firmware Mobile Manufacturing

10 Network Security Threats Everyone Should Know

eSecurity Planet

MARCH 16, 2023

Definition, Threats & Protections Public Internet Threats If your enterprise network is connected to the public internet, every single threat on the internet can render your business vulnerable too. These threaten enterprise networks because malicious traffic from the internet can travel between networks.

Network Security

Network Security Firewall Internet Internet

DDoS attacks in Q1 2021

SecureList

MAY 10, 2021

To prevent attacks via RDP, it is recommended to hide RDP servers behind a VPN or disable UDP port 3389. That said, a VPN is no panacea if it too is vulnerable to amplification attacks. In Q1 2021, for instance, attackers went after Powerhouse VPN servers. This may be reflected in the data presented in this report.

DDOS

DDOS Cryptocurrency Media Marketing

2024 State of Cybersecurity: Reports of More Threats & Prioritization Issues

eSecurity Planet

MAY 2, 2024

The sophistication gap presents security professionals with the dilemma where “on one end, advanced attackers employ custom tools and cloud infrastructure; on the other, some still use basic, often free services.” Infrastructure Protection Defense against DDoS and DNS attacks starts with effective network security architecture.

Cybersecurity

Cybersecurity DDOS Penetration Testing Passwords

APT trends report Q3 2021

SecureList

OCTOBER 26, 2021

This new “unknown backdoor” presents similarities to both FourteenHI and Microcin, a Trojan exclusively attributed to SixLittleMonkeys that we described in other reports available on our Threat Intelligence Portal. The samples we analyzed mimicked various applications such as private messaging, VPN, and media services.

Malware

Malware Government Surveillance Spyware

Advanced threat predictions for 2023

SecureList

NOVEMBER 14, 2022

Doubling down on developer-specific threats, IBM presented noteworthy research at this year’s edition of BlackHat, evidencing how source code management or continuous integration systems could be leveraged by attackers. One of the major cyber-incidents of 2022 took place early this year: the Okta hack.

Firmware

Firmware Surveillance Mobile Telecommunications

Cyber Security Informer

MyBook Users Urged to Unplug Devices from Internet

Who and What is Behind the Malware Proxy Service SocksEscort?

Webinars

Trending Sources

Zyxel 0day Affects its Firewall Products, Too

Webinars

Unauthenticated RCE can allow hacking DrayTek Vigor routers without user interaction

Interview With a Crypto Scam Investment Spammer

Some Zyxel devices can be hacked via DNS requests

Remotely Accessing Secure Kali Pi

Russia-linked threats actors exploited default MFA protocol and PrintNightmare bug to compromise NGO cloud

The State of Endpoint Security Management in 2022: It’s Worse Than You Suspect

IoT Cybersecurity: 5 Major Vulnerabilities and How to Tackle Them

GUEST ESSAY: The story behind how DataTribe is helping to seed ‘Cybersecurity Valley’ in Maryland

Overview of IoT threats in 2023

IoT Secure Development Guide

10 Network Security Threats Everyone Should Know

DDoS attacks in Q1 2021

2024 State of Cybersecurity: Reports of More Threats & Prioritization Issues

APT trends report Q3 2021

Advanced threat predictions for 2023

Stay Connected