The Hacker News

DECEMBER 8, 2023

A collection of security flaws in the firmware implementation of 5G mobile network modems from major chipset vendors such as MediaTek and Qualcomm impact USB and IoT modems as well as hundreds of smartphone models running Android and iOS.

Firmware 143

Firmware IoT Mobile 143

eSecurity Planet

NOVEMBER 1, 2021

The European Union is poised to place more demands on manufacturers to design greater security into their wireless and Internet of Things (IoT) devices. has made some strides on IoT security at the federal level; it remains to be seen if the EU initiative will spur the U.S. IoT market growth. IoT Security Neglected.

Wireless 109

Wireless IoT Manufacturing Mobile 109

Security Affairs

DECEMBER 24, 2018

Security researchers discovered some flaws in the Twinkly IoT lights that could be exploited display custom lighting effects and to remotely turn off them. Twinkly smart decoration could be controlled via a mobile app, the experts focused their tests on the communication. ” reads the analysis published by MWR InfoSecurity.

IoT 107

IoT Hacking DNS Authentication 107

Malwarebytes

MAY 4, 2022

Researchers have found a vulnerability in a popular C standard library in IoT products that could allow attackers to perform DNS poisoning attacks against a target device. Because uClibc is a relatively small C standard library intended for Linux kernel-based operating systems for embedded systems and mobile devices.

IoT 133

IoT DNS Risk Internet 133

Security Affairs

APRIL 26, 2019

Experts discovered security flaws in the iLnkP2P peer-to-peer (P2P) system that exposes millions of IoT devices to remote attacks. The iLnkP2P system allows users to remotely connect to their IoT devices using a mobile phone or a PC. Potentially affected IoT devices include cameras and smart doorbells. Pierluigi Paganini.

IoT 110

IoT Hacking Manufacturing Advertising 110

Security Affairs

APRIL 13, 2022

Researchers discovered five vulnerabilities that can be exploited to remotely hack hospital Aethon’s TUG autonomous mobile robots. A TUG is an autonomous mobile robot designed for hospitals by Aethon. Cynerio ethically disclosed the issues to Aethon and the vendor addressed it with the release of firmware updates.

Mobile 111

Mobile Hacking Firmware Surveillance 111

Security Affairs

DECEMBER 15, 2020

Experts from IoT security firm Sternum discovered vulnerabilities discovered in Medtronic’s MyCareLink Smart 25000 Patient Reader product that could be exploited to take control of a paired cardiac device. The flaw could be exploited by an attacker to remotely execute code taking over the device. ” states the advisory.

Firmware 140

Firmware Authentication Mobile IoT 140

Security Affairs

FEBRUARY 6, 2020

Lightbulbs could be remotely controlled through a mobile app or via a digital home assistant, owners could control the light in the environment and even calibrate the color of each lightbulb. The bridge discovers the hacker-controlled bulb with updated firmware, and the user adds it back onto their network.

Hacking 142

Hacking IoT Wireless Firmware 142

SiteLock

AUGUST 27, 2021

Simply defined, the internet of things (IoT) is a network of Internet-connected objects able to collect and exchange data. In today’s digital-driven world, IoT connects almost everything including homes, offices, and vehicles, allowing users the convenience of activating and operating nearly any device remotely. Think again.

IoT 98

IoT Spyware VPN Passwords 98

Thales Cloud Protection & Licensing

SEPTEMBER 12, 2018

The Internet of Things (IoT) is rapidly growing and expected to affect all industry verticals as well as our private lives. In this blog, we reached out to our technology partner Nexus to better understand the challenges that the industry faces to ensure safe deployment and management of IoT technologies. Weak authentication.

IoT 92

IoT Computers and Electronics Authentication Marketing 92

Security Boulevard

MAY 30, 2022

Why Healthcare IoT Requires Strong Machine Identity Management. The healthcare industry has been leveraging IoT devices for years, steadily increasing its use in facilities and patient care. By 2027, the IoT in Healthcare market is expected to reach $290 billion , up from just $60 billion in 2019. brooke.crothers.

Healthcare 90

Healthcare IoT Manufacturing Risk 90

Thales Cloud Protection & Licensing

MAY 31, 2021

Use cases of secure IoT deployment. In our previous blog post , we discussed the challenges for securing IoT deployments, and how businesses and consumers benefit from authenticating and validating IoT software and firmware updates. Tue, 06/01/2021 - 06:55. Use case 1: Fortune 500 Healthcare Company.

IoT 71

IoT Computers and Electronics Manufacturing Firmware 71

Thales Cloud Protection & Licensing

MARCH 10, 2021

What’s driving the security of IoT? First off, connected vehicles and IoT devices are highly attractive targets to hackers. Unlike servers and devices running in enterprise networks, IoT devices are typically shipped direct to consumers, without any control over the network or environment they run in. Guest Blog: TalkingTrust.

IoT 77

IoT Firmware Manufacturing Encryption 77

Security Affairs

JULY 17, 2021

Network equipment vendor D-Link has released a firmware hotfix to fix multiple vulnerabilities in the DIR-3040 AC3000-based wireless internet router. Network equipment vendor D-Link has released a firmware hotfix to address multiple vulnerabilities affecting the DIR-3040 AC3000-based wireless internet router. ” states the vendor.

Firmware 130

Firmware Wireless Passwords Internet 130

Security Affairs

FEBRUARY 15, 2020

The protocol Bluetooth Low Energy (BLE) was released in 2010 and it is designed to implement a new generation of services for mobile applications. We also urge SoC vendors and IoT product manufacturers to be aware of such security issues and to initiate focused effort in security testing.” ” continues the experts.

IoT 141

IoT Firmware Advertising Hacking 141

CyberSecurity Insiders

JUNE 29, 2021

A recent study made by Nozomi Networks, a security company that offers solutions for IoT products has discovered that millions of connected cameras are on the verge of being hijacked by cyber crooks through a vulnerability. US Cybersecurity and Infrastructure Security Agency issued a warning recently and assigned a 9.1

Firmware 85

Firmware IoT Surveillance Manufacturing 85

The Last Watchdog

OCTOBER 16, 2019

Related: IoT exposures explained I’ve conversed several times with Jeff Hudson about this. APIs , the interface coding that allows two different machines to exchange data – for instance, an IoT device and a command server — are machines as well. By comparison, scant effort has gone into securing the latter.

Digital transformation 195

Digital transformation Firmware Authentication IoT 195

SecureList

JUNE 8, 2022

According to cve.mitre.org , the number of vulnerabilities discovered in various routers, from mobile to industrial, has grown over the past decade. Moreover, whereas employees have more or less got to grips with protecting laptops, desktop computers and even mobile devices, they may not know what to do, if anything, with routers.

DDOS 133

DDOS Passwords IoT Firmware 133

Security Affairs

DECEMBER 17, 2023

that impacted several routers, including Future X Communications (FXC) AE1021 and AE1021PE wall routers, running firmware versions 2.0.9 “QNAP considers these devices discontinued for support; however, the vendor recommends upgrading VioStor firmware on existing devices to the latest available version. and earlier.

Firmware 139

Firmware Wireless DDOS IoT 139

Security Boulevard

JUNE 28, 2022

IoT and Machine Identity Management in Financial Services. How is IoT changing the financial sector? IoT has already positively impacted the financial sector and will only continue to in the future. The most notable and well-documented example of investment in the IoT infrastructure has been by retail banks.

Financial Services 64

Financial Services IoT Banking Retail 64

SecureList

JUNE 20, 2023

The findings of the study reveal a number of serious security issues, including the use of hard-coded credentials, and an insecure firmware update process. Typically, pet feeders are controlled by a mobile application that allows you to set, update and manage them.

Firmware 106

Firmware Passwords Manufacturing Mobile 106

Security Affairs

NOVEMBER 1, 2018

Security experts from the IoT security firm Armis, the same that found the BlueBorne Bluetooth flaws, have discovered two serious vulnerabilities in BLE chips designed by Texas Instruments. The flaw can only be exploited if the device using the chip has the over-the-air firmware download (OAD) feature enabled. ” concludes Armis.

Firmware 105

Firmware Manufacturing IoT Advertising 105

SiteLock

AUGUST 27, 2021

The conference held many briefings on politics, legislation, and Machine Learning (ML) and Artificial Intelligence (AI) in cybersecurity, as well as the challenge of endpoint security for many IoT devices. Straight on the heels of Black Hat was DEF CON 26.

Small Business 98

Small Business Artificial Intelligence Firmware IoT 98

The Last Watchdog

MAY 23, 2022

We have to think about how to extend trust to mobile devices and to IoT devices, and how to more effectively protect supply chains and critical infrastructure,” Sabin says. “We We also must find ways to encourage high levels of compliance with industry standards and government regulations.

Cybersecurity 214

Cybersecurity Computers and Electronics Digital transformation Encryption 214

Malwarebytes

MAY 13, 2021

To demonstrate their point, they released an ESP32 firmware that turns the micro-controller into an (upload only) modem. In theory, such a technique could be used to avoid the cost and power-consumption of mobile Internet access. They also created a macOS application to retrieve, decode and display the uploaded data.

Internet 134

Internet Internet Firmware Mobile 134

CyberSecurity Insiders

OCTOBER 27, 2021

As for IoT devices, it is expected that more than 3 billion devices will be connected to cellular networks over the next five years and eSIM capable devices will exhibit CAGR of? The iSIM not only provides a streamlined experience for customers, mobile operators and OEMs, but allows all parties to reap the benefits, including: .

Technology 100

Technology Manufacturing IoT Mobile 100

SecureWorld News

OCTOBER 8, 2023

Avoid charging mobile devices through a computer; instead, use separate adapters. Use the administrator account only for maintenance, software installation, or firmware updates. Consider segmenting your Wi-Fi networks: one for main use, one for guests, and another for IoT devices. Use the 3-2-1 backup rule.

Firmware 111

Firmware IoT Accountability Passwords 111

Security Affairs

APRIL 17, 2020

The issue affects the following Cisco products if they have web access enabled and are running a firmware release earlier than the first fixed release for that device: IP Phone 7811, 7821, 7841, and 7861 Desktop Phones IP Phone 8811, 8841, 8845, 8851, 8861, and 8865 Desktop Phones Unified IP Conference Phone 8831 Wireless IP Phone 8821 and 8821-EX.

Big data 139

Big data Wireless Advertising Firmware 139

Adam Levin

FEBRUARY 10, 2020

If you use IoT devices, create a separate network on your router for them since they aren’t always the most secure connections to the outside world. And be judicious about any app you might download to your mobile device. Never buy a device that doesn’t allow you to set a long and strong password. Update Everything.

Passwords 245

Passwords Phishing Password Management Accountability 245

Security Affairs

JUNE 23, 2020

The Internet Printing Protocol (IPP) is a specialized Internet protocol for communication between client devices (computers, mobile phones, tablets, etc.) This info includes printer names, locations, models, firmware versions, organization names, and even WiFi network names. and printers (or print servers).

Internet 139

Internet Internet Firmware Advertising 139

eSecurity Planet

MARCH 30, 2023

FortiNAC functions well as a basic NAC for wired and wireless connections with employee and guest users on traditional workstations, laptops, servers, and mobile devices. FortiNAC also delivers network segmentation and automated responses specifically for IoT security. FortiNAC is integrated with FortiGate and other Fortinet products.

IoT 98

IoT Firewall Wireless Mobile 98

ForAllSecure

APRIL 22, 2021

It seems everything smart is hackable, with IoT startups sometimes repeating security mistakes first made decades ago. The next day I cut the string, There's a parallel here to IoT light bulbs that change colors. And what then are the tools and knowledge that you need to get started hacking IoT devices. Funny thing.

IoT 52

IoT Hacking Internet Internet 52

ForAllSecure

APRIL 22, 2021

It seems everything smart is hackable, with IoT startups sometimes repeating security mistakes first made decades ago. The next day I cut the string, There's a parallel here to IoT light bulbs that change colors. And what then are the tools and knowledge that you need to get started hacking IoT devices. Funny thing.

IoT 52

IoT Hacking Internet Internet 52

Security Affairs

APRIL 19, 2019

“You can find these chips almost everywhere from smartphones to laptops, smart-TVs and IoT devices. Anguelkov confirmed that two of those vulnerabilities affect both in the Linux kernel and firmware of affected Broadcom chips. In this case, firmware event frames from a remote source will be processed. •

Hacking 111

Hacking Firmware Advertising Wireless 111

Security Affairs

OCTOBER 6, 2018

Patch management is a crucial aspect for IoT devices, smart objects are surrounding us and represent a privileged target for hackers. Click the Firmware update link for details about how to check the software version. An attacker needs to share on the same wireless network as the Sony TV in order to trigger the vulnerability.

IoT 111

IoT Advertising Wireless Firmware 111

Security Affairs

JULY 1, 2020

Netgear published the list of impacted products, it includes routers, mobile routers, modems, gateways and extenders. Some of the vulnerabilities were discovered during the Pwn2Own Tokyo 2019 hacking contest and reported through the Zero Day Initiative (ZDI). The researchers earned a total of $25,000 for reporting them.

Authentication 145

Authentication Firmware Hacking Mobile 145

Krebs on Security

JULY 25, 2023

And a great many of these “proxy” networks are marketed primarily to cybercriminals seeking to anonymize their traffic by routing it through an infected PC, router or mobile device. “The best way to secure the transmissions of your mobile device is VPN,” reads HideIPVPN’s description on the Apple Store.

Malware 244

Malware VPN Internet Internet 244