Security Boulevard

JANUARY 4, 2025

Vulnerabilities and Malware Primarily includes severe and exploited vulnerabilities in devices or software used by end users (ex: a major router firmware flaw). EOL devices should be replaced as soon as possible, as they are no longer supported by the manufacturer. Malware campaigns covered generally target/affect the end user.

Data breaches

Zero Day

JULY 23, 2025

In this article, I'm focusing on one particular important use: installing firmware updates using a USB device. Locate the firmware update Go online and visit the manufacturer's official website to look for the "Support" or "Downloads" section. Look for the latest firmware update file.

Firmware

Zero Day

JUNE 16, 2025

" Also: These 3 Apple CarPlay upgrades stole WWDC 2025 for me There are other advantages to using a USB port to connect with your vehicle's mobile device projection systems. Update your car's multimedia unit firmware What is firmware? Depending on your car's manufacturer, this could be exFAT or FAT32.

Wireless

Zero Day

JULY 15, 2025

Analyze your observed usage over time For as long as I can remember, PC manufacturers and independent reviewers have struggled to come up with measurements of battery life that can be used to compare the performance of different devices. Use shutdown /fw  to restart and go to the firmware user interface.

Artificial Intelligence

Schneier on Security

JUNE 21, 2019

In 2017, some Android phones came with a backdoor pre-installed : Criminals in 2017 managed to get an advanced backdoor preinstalled on Android devices before they left the factories of manufacturers, Google researchers confirmed on Thursday. That meant the malware could directly tamper with every installed app. This is a supply chain attack.

Firmware

Zero Day

JUNE 23, 2025

Check out Chromecast Preview The Chromecast Preview Program is a user-opt-in channel that updates your Google device with the latest firmware version before it's made broadly available. Even though Google has discontinued manufacturing the Chromecast, it remains a reliable and inexpensive way to access oodles of content.

Hacking

Zero Day

JULY 15, 2025

Since Amazon is so new to manufacturing, I was expecting a bare-bones TV with basic features and passable picture and sound. Taylor Clemons/ZDNET Along with apps, you can also share your mobile device screens via AirPlay or Chromecast. One factory reset and several firmware updates later, we were able to get the issue fixed.

Software

Security Affairs

OCTOBER 8, 2023

Researchers warn that more than 70,000 Android smartphones, CTV boxes, and tablets were shipped with backdoored firmware as part of BADBOX network. Cybersecurity researchers at Human Security discovered a global network of consumer products, dubbed BADBOX, with firmware backdoors installed and sold through a compromised hardware supply chain.

Firmware

CyberSecurity Insiders

MARCH 1, 2021

As per the document ‘Mobile Malware Evolution 2020’ document released by Kaspersky, the online banking services have become prime targets to those spreading Mobile Adware. Kaspersky claims that the Android devices mostly those belonging to Chinese OEMs are coming pre-installed with adware and some even in the firmware components.

Adware

Security Affairs

SEPTEMBER 6, 2021

Security researcher ValdikSS found malware preinstalled in four low-budget push-button mobile phones available for sale on Russian e-stores. A Russian security researcher that goes online with the name of ValdikSS has found malware preinstalled in four low-budget push-button mobile phones available for sale on Russian e-stores.

Mobile

SecureList

MARCH 1, 2021

In 2020, Kaspersky mobile products and technologies detected: 5,683,694 malicious installation packages, 156,710 new mobile banking Trojans, 20,708 new mobile ransomware Trojans. Pandemic theme in mobile threats. The mobile malware Trojan-Ransom.AndroidOS.Agent.aq The year in figures. Trends of the year.

Mobile

CyberSecurity Insiders

NOVEMBER 25, 2021

From backdoors- As the Korean giant creates, validates and manufactures its computing devices all on its own, its every piece of hardware, wiring and firmware is securely drafted at its high secure R&D plants & factories in the world. So, why think much about security?

Mobile

Troy Hunt

NOVEMBER 25, 2020

I also looked at custom firmware and soldering and why, to my mind, that was a path I didn't need to go down at this time. Let's got through the options: Firmware Patching I'll start with the devices themselves and pose a question to you: can you remember the last time you patched the firmware in your light globes? Or vibrator.

IoT

Krebs on Security

APRIL 26, 2019

iLnkP2P is designed to allow users of these devices to quickly and easily access them remotely from anywhere in the world, without having to tinker with one’s firewall: Users simply download a mobile app, scan a barcode or enter the six-digit ID stamped onto the bottom of the device, and the P2P software handles the rest.

IoT

Security Affairs

JULY 21, 2020

Researchers devised a technique dubbed BadPower to alter the firmware of fast chargers to cause damage to connected systems or cause the device to catch fire. BadPower consists of corrupting the firmware of fast chargers. “Most BadPower problems can be fixed by updating the device firmware.”

Firmware

Security Affairs

APRIL 7, 2020

The malware is distributed as a popular cleaner and speed optimization app for mobile devices, most of the infections reported by Kaspersky are in Russia (80.56%), India (3.43%), and Algeria (2.43%). “The malware can gain root access mainly on devices running Android versions 6 and 7 from Chinese manufacturers (including ODMs).

Malware

Security Affairs

NOVEMBER 1, 2021

“According to Vladimir Kononovich, some manufacturers rely on security through obscurity, with proprietary protocols that are poorly studied and the goal of making it difficult for attackers to procure equipment to find vulnerabilities in such devices. Wincor is currently owned by ATM manufacturer giant Diebold Nixdorf.

Hacking

Security Affairs

AUGUST 23, 2022

The experts noticed that all the devices were copycats of famous brand-name models, their names are consonant with the names of some of the models produced by popular manufacturers. The post Counterfeit versions of popular mobile devices target WhatsApp and WhatsApp Business appeared first on Security Affairs. Android 4.4.2

Mobile

Security Affairs

JUNE 12, 2022

The flaws impact products manufactured by LenelS2, a provider of advanced physical security solutions (i.e. access control, video surveillance and mobile credentialing) owned by HVAC giant Carrier. The experts focused on Carrier’s LenelS2 access control panels, manufactured by HID Mercury. Overall 4.8.

Firmware

SecureList

MARCH 20, 2024

Introduction Malware for mobile devices is something we come across very often. million malware, adware, and riskware attacks on mobile devices. Among the mobile platforms, Android remains the most popular target operating system for cybercriminals. In 2023 , our technologies blocked 33.8 Collects system information (e.g.

Malware

Zero Day

JUNE 27, 2025

View now at Mudita Since I started covering mobile phones 20 years ago, I've watched them transform from simple devices to having an all-encompassing impact on our lives. The E Ink display is easy on the eyes, the battery lasts for days, and it satisfies the minimalist intention with far fewer distractions.

Password Management

Google Security

SEPTEMBER 24, 2024

GPUs (graphics processing units) are critical in delivering rich visual experiences on mobile devices. However, the GPU software and firmware stack has become a way for attackers to gain permissions and entitlements (privilege escalation) to Android-based devices. This tailors the GPU to the manufacturer's specific device(s).

Firmware

SecureList

JUNE 20, 2023

The findings of the study reveal a number of serious security issues, including the use of hard-coded credentials, and an insecure firmware update process. Typically, pet feeders are controlled by a mobile application that allows you to set, update and manage them.

Firmware

eSecurity Planet

NOVEMBER 1, 2021

The European Union is poised to place more demands on manufacturers to design greater security into their wireless and Internet of Things (IoT) devices. Manufacturers will be required to adhere to the new cybersecurity safeguards when designing and producing these products. percent over the same period in 2020, with 313.2

Wireless

CyberSecurity Insiders

OCTOBER 27, 2021

With devices needing SIMs to authenticate them for mobile networks, advances in SIM technology will be critical f or the expansion of the connected world in years to come. . So how can manufacturers seamlessly manage this growth, while also ensuring secure access to cellular networks? Same security certification .

Technology

CyberSecurity Insiders

MARCH 16, 2021

The cars we drive today have become truly connected objects, capable of a variety of functionalities that both users and manufacturers could have only dreamed of in past decades. However, with increased connectivity in our cars, new challenges are arising for both manufacturers and users. Technologies that enable connectivity in cars.

Manufacturing

SecureWorld News

FEBRUARY 17, 2024

In response, manufacturers are intensifying their cybersecurity efforts, incorporating advanced CI/CD workflows to safeguard medical devices from escalating attacks. New security solutions are now aiding healthcare organizations' IT teams in promptly resolving issues, even with devices from various manufacturers.

Healthcare

CyberSecurity Insiders

JUNE 29, 2021

Security researchers say that the flaw is related to software component used in cloud surveillance platform ThroughTek that is used by OEMs while manufacturing IP Cameras, baby monitoring cams and pet monitoring solutions along with robotic and battery devices. score to the newly discovered P2P SDK vulnerability.

Firmware

Security Affairs

AUGUST 30, 2019

Some of the SORM devices found by the researcher were manufactured by the Russian MFI Soft. ” “All these data make it possible to determine exactly whose traffic this is, and which clients they are,” Evdokimov concluded. The 30 SORM devices remained unsecured online until Evdokimov made his presentation at the conference.

Surveillance

Security Affairs

NOVEMBER 1, 2018

The affected chips are also used in access points and other networking devices manufactured by Cisco and Aruba Networks. “The chips are embedded in, among other devices, certain access points that deliver Wi-Fi to enterprise networks manufactured by Cisco, Meraki and Aruba. ” reads the post published by Armis.

Firmware

Security Affairs

APRIL 26, 2019

The iLnkP2P system allows users to remotely connect to their IoT devices using a mobile phone or a PC. Roughly 50% of vulnerable devices is manufactured by Chinese company Hichip. Software-based remediation is unlikely due to the infeasibility of changing device UIDs, which are permanently assigned during the manufacturing process.

IoT

Security Affairs

SEPTEMBER 6, 2019

600,000 GPS trackers left exposed online with a default password of ‘123456’ Avast researchers found at least 600,000 GPS trackers manufactured by a Chinese vendor that were exposed online with a default password of “123456.”

Passwords

Security Affairs

FEBRUARY 15, 2020

The protocol Bluetooth Low Energy (BLE) was released in 2010 and it is designed to implement a new generation of services for mobile applications. We also urge SoC vendors and IoT product manufacturers to be aware of such security issues and to initiate focused effort in security testing.” ” continues the experts.

IoT

SecureList

JUNE 8, 2022

According to cve.mitre.org , the number of vulnerabilities discovered in various routers, from mobile to industrial, has grown over the past decade. Moreover, whereas employees have more or less got to grips with protecting laptops, desktop computers and even mobile devices, they may not know what to do, if anything, with routers.

DDOS

SecureList

FEBRUARY 27, 2024

Toy manufacturers are striving to keep up with these trends, releasing more and more models that can also be called “smart.” The parent application must be installed on the parent’s mobile device in order to accomplish this. ” For instance, educational robots that connect to the internet and support video calls.

Education

Thales Cloud Protection & Licensing

MAY 31, 2021

In our previous blog post , we discussed the challenges for securing IoT deployments, and how businesses and consumers benefit from authenticating and validating IoT software and firmware updates. Requirements also included that the firmware was to be signed by the manufacturer and verified by the pacemaker.

IoT

Thales Cloud Protection & Licensing

MARCH 10, 2021

There are so many reasons why manufacturers connect their products to the Internet, whether it’s industrial machines, medical devices, consumer goods or even cars. Additionally, many auto manufacturers now have the ability to remotely update software to fix vulnerabilities or even upgrade functionality. Co-ordination is key.

IoT