Firmware, Passwords and Software - Cyber Security Informer

Tainted password-cracking software for industrial systems used to spread P2P Sality bot

Security Affairs

JULY 15, 2022

Threat actors behind the campaign used multiple accounts across several social media platforms to advertise password-cracking software for Programmable Logic Controller (PLC), Human-Machine Interface (HMI), and project files. The password cracking software also acts as a dropper for the Sality P2P bot. Pierluigi Paganini.

Passwords

Passwords Software Firmware Malware

Hackers Distributing Password Cracking Tool for PLCs and HMIs to Target Industrial Systems

The Hacker News

JULY 18, 2022

Industrial engineers and operators are the target of a new campaign that leverages password cracking software to seize control of Programmable Logic Controllers (PLCs) and co-opt the machines to a botnet. Further, the software was a malware

Passwords

Passwords Firmware Engineering Software

MITRE, CISA Reveal Dangerous Hardware & Software Vulnerabilities

eSecurity Planet

NOVEMBER 4, 2021

According to MITRE, “Because hardware is not patchable as easily as software, any flaw discovered after release and production typically cannot be fixed without a recall of the product.”. CWE-1277 : Firmware Not Updateable – firmware exploitation exposes the victim to a permanent risk without any possibility to patch weaknesses.

Software

Software Firmware Computers and Electronics Risk

Webinars

Human-Centered Cyber Security Training: Driving Real Impact on Security Culture

MORE WEBINARS

Five Ways to Secure Your Home Office Webcam

Adam Levin

MARCH 23, 2020

Update your camera’s firmware and software: Whether it’s an external camera or one built into your laptop or tablet, check for manufacturer updates and always keep your camera’s software and firmware fully up to date because patches are often released specifically to patch security vulnerabilities.

Firmware

Firmware Manufacturing Passwords Software

Experts warn of backdoor-like behavior within Gigabyte systems

Security Affairs

MAY 31, 2023

Researchers from firmware security firm Eclypsium have discovered a suspected backdoor-like behavior within Gigabyte systems. The experts discovered that the firmware in Gigabyte systems drops and executes a Windows native executable during the system startup process. The executable resides in a UEFI firmware volume.

Firmware

Firmware Risk Software Passwords

Another 0-Day Looms for Many Western Digital Users

Krebs on Security

JULY 2, 2021

That update effectively nullified their chances at competing in Pwn2Own, which requires exploits to work against the latest firmware or software supported by the targeted device. A statement published on its support site March 12, 2021 says the company will no longer provide further security updates to the MyCloud OS 3 firmware.

Firmware

Firmware Passwords Internet Internet

D-Link issues beta hotfix for multiple flaws in DIR-3040 routers

Security Affairs

JULY 17, 2021

Network equipment vendor D-Link has released a firmware hotfix to fix multiple vulnerabilities in the DIR-3040 AC3000-based wireless internet router. Network equipment vendor D-Link has released a firmware hotfix to address multiple vulnerabilities affecting the DIR-3040 AC3000-based wireless internet router.

Firmware

Firmware Wireless Passwords Internet

P2P Weakness Exposes Millions of IoT Devices

Krebs on Security

APRIL 26, 2019

A map showing the distribution of some 2 million iLinkP2P-enabled devices that are vulnerable to eavesdropping, password theft and possibly remote compromise, according to new research. The security flaws involve iLnkP2P , software developed by China-based Shenzhen Yunni Technology.

IoT

IoT Firewall Manufacturing Computers and Electronics

SonicWall warns users of “imminent ransomware campaign”

Malwarebytes

JULY 15, 2021

The exploitation targets a known vulnerability that has been patched in newer versions of SonicWall firmware. x versions of the firmware. x firmware. x firmware versions. The notice mentions the following products along with recommended actions: SRA 4600/1600 (EOL 2019) disconnect immediately and reset passwords.

Ransomware

Ransomware Firmware VPN Firewall

Hundreds of vulnerabilities in common Wi-Fi routers affect millions of users

Security Affairs

DECEMBER 5, 2021

The most common issues discovered by the experts were outdated Linux kernel in the firmware, outdated multimedia and VPN functions, presence of hardcoded credentials, the use of insecure communication protocols and weak default passwords. “Some of the security issues were detected more than once.

Manufacturing

Manufacturing IoT Firmware VPN

Be aware of exposure of sensitive data on Wi-Fi settings for Canon inkjet printers

Security Affairs

AUGUST 1, 2023

The information stored in a Canon printer depends on the specific model, however, almost any model stores the network SSID, the password, network type (WPA3, WEP, etc.), Set up strong authentication mechanisms, such as complex passwords or use multi-factor authentication (MFA) for printer access. MAC address, and IP address.

Wireless

Wireless Firmware Passwords Authentication

Patch now! Insecure Hikvision security cameras can be taken over remotely

Malwarebytes

SEPTEMBER 22, 2021

In a detailed post on Github , security researcher Watchful_IP describes how he found that the majority of the recent camera product ranges of Hikvision cameras are susceptible to a critical, unauthenticated, remote code execution (RCE) vulnerability, even with the latest firmware. Hangzhou Hikvision Digital Technology Co.,

Firmware

Firmware Surveillance Marketing VPN

Downfall Intel CPU side-channel attack exposes sensitive data

Security Affairs

AUGUST 9, 2023

Malware can carry out a Downfall attack to steal sensitive information like passwords, encryption keys, and private data such as banking details, personal emails, and messages. “The vulnerability is caused by memory optimization features in Intel processors that unintentionally reveal internal hardware registers to software.

Firmware

Firmware Encryption Software Banking

Beyond the Office: Securing Home Devices and Networks Against Corporate Breaches

SecureWorld News

OCTOBER 8, 2023

Let devices go into sleep mode to allow for automatic software updates. Even harmless details, such as pet names or birthplaces, can be used by hackers to reset passwords. Use the administrator account only for maintenance, software installation, or firmware updates. Opt for strong, hard-to-crack passwords.

Firmware

Firmware IoT Accountability Passwords

Security Affairs newsletter Round 439 by Pierluigi Paganini – International edition

Security Affairs

OCTOBER 1, 2023

ALPHV/BlackCat ransomware gang hacked the hotel chain Motel One FBI warns of dual ransomware attacks Progress Software fixed two critical severity flaws in WS_FTP Server Child abuse site taken down, organized child exploitation crime suspected – exclusive A still unpatched zero-day RCE impacts more than 3.5M

Artificial Intelligence

Artificial Intelligence Firmware Data breaches Hacking

CISA and FBI issue alert about Zeppelin ransomware

Malwarebytes

AUGUST 16, 2022

Require all accounts with password logins to meet the required standards for developing and managing password policies. Use long passwords (CISA says 8 characters, we say you can do better than that) and password managers. Store passwords using industry best practice password hashing functions.

Ransomware

Ransomware Backups Passwords Authentication

IT threat evolution Q1 2024

SecureList

JUNE 3, 2024

The attackers were able to bypass this hardware-based security protection using another hardware feature of Apple-designed SoCs (System on a Chip): they did this by writing the data, destination address and data hash to unknown hardware registers of the chip that are not used by the firmware.

Banking

Banking Malware Computers and Electronics Mobile

Cisco Warns of Multiple Flaws in Small Business Series Switches

eSecurity Planet

MAY 18, 2023

Despite the severity of the flaws, Cisco says the last three products in the list above won’t be covered by software updates or by workarounds because they’ve entered the end-of-life process. “In addition, a software release that is affected by one of the vulnerabilities may not be affected by the other vulnerabilities.”

Small Business

Small Business Firmware Ransomware Software

IoT Unravelled Part 3: Security

Troy Hunt

NOVEMBER 25, 2020

I also looked at custom firmware and soldering and why, to my mind, that was a path I didn't need to go down at this time. I can't blame this on the teddy bears themselves, rather the fact that the MongoDB holding all the collected data was left publicly facing without a password. IoT firmware should be self-healing.

IoT

IoT Firmware Risk Manufacturing

The High-Stakes Game of Ensuring IoMT Device Security

SecureWorld News

FEBRUARY 17, 2024

Being constantly connected to the internet, they are either protected by basic passwords or, in some cases, have no password protection at all. When multiple devices are interconnected into one network, there is often a vulnerable point in this network—typically, a device with less sophisticated and secure software or firmware.

Healthcare

Healthcare Manufacturing Internet Internet

Half of EDR Tools, Organizations Vulnerable to Clop Ransomware: Researchers

eSecurity Planet

JUNE 30, 2023

Cymulate ran 3,107 assessments across 340 organizations recently to see if security controls were adequate against the Clop (sometimes called “Cl0p” with a zero) ransomware group’s exploitation of a MOVEit software vulnerability ( CVE-2023-34362 ). Endpoint Security: Install and update antivirus software on all hosts.

Ransomware

Ransomware Backups Passwords Software

Security Affairs newsletter Round 374 by Pierluigi Paganini

Security Affairs

JULY 16, 2022

Critical flaw in Netwrix Auditor application allows arbitrary code execution CISA urges to fix multiple critical flaws in Juniper Networks products Threat actors exploit a flaw in Digium Phone Software to target VoIP servers Tainted password-cracking software for industrial systems used to spread P2P Sality bot Experts warn of attacks on sites using (..)

Firmware

Firmware Ransomware DDOS Cryptocurrency

Avoslocker ransomware gang targets US critical infrastructure

Security Affairs

MARCH 19, 2022

Regularly back up data, password protect backup copies offline. Install and regularly update antivirus software on all hosts, and enable real time detection. Install updates/patch operating systems, software, and firmware as soon as updates/patches are released. Avoid reusing passwords for multiple accounts.

Ransomware

Ransomware DDOS Passwords Backups

FBI warns of ransomware attacks targeting the food and agriculture sector

Security Affairs

SEPTEMBER 3, 2021

The FBI provided the following mitigations to protect against ransomware attacks: Regularly back up data, air gap, and password protect backup copies offline. Install updates/patch operating systems, software, and firmware as soon as they are released. Avoid reusing passwords for multiple accounts.

Ransomware

Ransomware Passwords Backups Firmware

A week in security (July 19 – August 1)

Malwarebytes

AUGUST 2, 2021

UDP Technology IP Camera firmware vulnerabilities allow for attacker to achieve root. Source: ZDNet) We can’t believe people use browsers to manage their passwords, says maker of password management tools. The Clubhouse database “breach” is likely a non-breach. Here’s why. Stay safe, everyone!

Wireless

Wireless Password Management Firmware Passwords

FBI published a flash alert on Mamba Ransomware attacks

Security Affairs

MARCH 26, 2021

“Mamba ransomware weaponizes DiskCryptor—an open source full disk encryption software— to restrict victim access by encrypting an entire drive, including the operating system. Require administrator credentials to install software. • Require administrator credentials to install software. • Implement network segmentation.

Ransomware

Ransomware Encryption Passwords Malware

Warning issued about Vice Society ransomware targeting the education sector

Malwarebytes

SEPTEMBER 7, 2022

Require all accounts with password logins to meet the required standards for developing and managing password policies: Require multifactor authentication wherever you can—particularly for webmail, VPNs, and critical systems. Use long passwords (CISA says 8 characters, we say you can do better than that) and password managers.

Education

Education Ransomware Backups Passwords

Multiple flaws in CODESYS V3 SDK could lead to RCE or DoS?

Security Affairs

AUGUST 13, 2023

Microsoft Threat Intelligence researchers discovered 16 high-severity vulnerabilities, collectively tracked as CoDe16 , in the CODESYS V3 software development kit (SDK). Check with the device manufacturers for available patches and update the device firmware to version to 3.5.19.0

Authentication

Authentication Firmware Hacking Passwords

Nine flaws in CyberPower and Dataprobe solutions expose data centers to hacking

Security Affairs

AUGUST 13, 2023

of PowerPanel Enterprise software and version 1.44.08042023 of the Dataprobe iBoot PDU firmware. Modify the passwords associated with all user accounts and revoke any sensitive information stored on both appliances that may have been leaked. CVE-2023-3267: OS Command Injection (Authenticated RCE; CVSS 7.5)

Hacking

Hacking Firmware Authentication Software

BlackCat Ransomware gang breached over 60 orgs worldwide

Security Affairs

APRIL 25, 2022

Regularly back up data, air gap, and password-protect backup copies offline. Require administrator credentials to install software. Install updates/patch operating systems, software, and firmware as soon as updates/patches are released. Implement the shortest acceptable timeframe for password changes.

Ransomware

Ransomware Antivirus Passwords Malware

Millions put at risk by old, out of date routers

Malwarebytes

MAY 7, 2021

There has been much discussion of antivirus protection, patching your software, and using VPNs. found: * Weak default passwords. These passwords can be easily guessed by hackers, are common across devices and could grant someone access. Although convenient, setting a weak password isn’t going to strengthen anyone’s security.

Risk

Risk Passwords Internet Internet

An educational robot security research

SecureList

FEBRUARY 27, 2024

Upon initial setup and internet connection, the robot prompts for a software update to the latest version and will not function without one. However, we decided not to update the toy immediately in order to explore what could be extracted from the older firmware version. This was the first security-related issue we discovered.

Education

Education Manufacturing Firmware Internet

Remotely Accessing Secure Kali Pi

Kali Linux

NOVEMBER 27, 2022

To enable wireless support, we need to find: The kernel Wi-Fi modules that need to be in the initramfs (Depends on hardware) The Wi-Fi firmware files that need to be in the initramfs (Depends on hardware) The Wireless interface name (Kali defaults to: wlan0 ) Additional packages to increase functionally. bin firmware: brcm/brcmfmac*-sdio.*.txt

Firmware

Firmware Wireless Passwords VPN

Internet safety tips for kids and teens: A comprehensive guide for the modern parent

Malwarebytes

SEPTEMBER 21, 2021

Show them these tips: Never use the same password twice. And if your child uses the same password across multiple accounts, when one gets breached they are all vulnerable. And if your child uses the same password across multiple accounts, when one gets breached they are all vulnerable. This is where a password manager comes in.

Internet

Internet Internet Passwords Password Management

How to Configure a Router to Use WPA2 in 7 Easy Steps

eSecurity Planet

MARCH 3, 2023

The typical username and password for Wi-Fi routers is “admin” for both, but you may need to search online or contact your ISP if that doesn’t work. And while you’re in there, update that password to something a little less hackable, possibly saving the new one in a password manager.

Wireless

Wireless Encryption Passwords IoT

Over 80,000 Hikvision cameras can be easily hacked

Security Affairs

AUGUST 23, 2022

The vulnerability is an unauthenticated Remote Code Execution (RCE) vulnerability in Hikvision IP camera/NVR firmware, it was discovered by a security researcher that goes online with the moniker “Watchful IP.”. No username or password needed nor any actions need to be initiated by the camera owner. wrote the expert. “.

Hacking

Hacking Firmware Internet Internet

"In our modern world, countless applications rely on radio frequency elements" - an Interview with Larbi Ouiyzme

Pen Test

OCTOBER 12, 2023

About the Author: Larbi OUIYZME Cybersecurity Consultant and Licensed Ham Radio Operator since 1988 with prefix CN8FF, deeply passionate about RF measurement, antennas, satellites, Software-defined radio, Digital Mobile Radio and RF Pentesting. What are the common firmware and software vulnerabilities in RF devices that can be exploited?

Encryption

Encryption Firmware Surveillance Technology

Nvidia, the ransomware breach with some plot twists

Malwarebytes

MARCH 3, 2022

In the case of the Nvidia breach, LAPSUS$ claimed it was mainly after the removal of the lite hast rate (LHR) limitations in all GeForce 30 series firmware—apparently all to help out gamers and the mining community. The passwords and email addresses of some 70k employees were involved. Password managers save time.

Ransomware

Ransomware Password Management Passwords Hacking

WAGO Industrial Switches affected by multiple flaws

Security Affairs

JUNE 13, 2019

The company has already fixed the issues with the release of firmware versions 1.2.2.S0, “The industrial managed switch series 852 from WAGO is affected by multiple vulnerabilities such as old software components embedded in the firmware. S0 and 1.1.5.S0, S0, respectively. ” reads the security advisory.

Firmware

Firmware Passwords Advertising IoT

Ranzy Locker ransomware hit tens of US companies in 2021

Security Affairs

OCTOBER 26, 2021

Below are the recommended mitigations included in the alert: Implement regular backups of all data to be stored as air gapped, password protected copies offline. Install and regularly update antivirus software on all hosts, and enable real time detection.

Ransomware

Ransomware Firmware Antivirus Accountability

Your home router might be accessible remotely and threaten your home security

Responsible Cyber

APRIL 7, 2020

Tip #1: Change your router admin portal password. and Wi-Fi secret passphrase (password is not good enough – try IFindMyhusband100%Sexy). This is absolutely a disaster if you did not change the default password as mentioned in tip #1. Tip #3: Don’t share your Wi-Fi password. Tip #4: Update your Wi-Fi router firmware.

Firmware

Firmware Passwords Risk Education

Who and What is Behind the Malware Proxy Service SocksEscort?

Krebs on Security

JULY 25, 2023

Researchers this month uncovered a two-year-old Linux-based remote access trojan dubbed AVrecon that enslaves Internet routers into botnet that bilks online advertisers and performs password-spraying attacks. Wiremo sells software and services to help website owners better manage their customer reviews. WHO’S BEHIND SOCKSESCORT?

Malware

Malware VPN Internet Internet

For remote workforces, don’t overlook printer security

SC Magazine

MARCH 23, 2021

A robust cloud-based print management software solution that’s secure by design makes it easy to manage device configuration for a fleet of printers across a network – scalable across an organization to thousands of devices. Manual configuration of devices can lead to problems with inconsistent settings and firmware levels.

Firmware

Firmware Digital transformation Passwords Software

Spectre and Meltdown Attacks Against Microprocessors

Schneier on Security

JANUARY 5, 2018

The second is that some of the patches require updating the computer's firmware. In November, Intel released a firmware update to fix a vulnerability in its Management Engine (ME): another flaw in its microprocessors. Some patches require users to disable the computer's password, which means organizations can't automate the patch.

Firmware

Firmware Software Engineering Phishing

Tainted password-cracking software for industrial systems used to spread P2P Sality bot

Hackers Distributing Password Cracking Tool for PLCs and HMIs to Target Industrial Systems

Webinars

Trending Sources

MITRE, CISA Reveal Dangerous Hardware & Software Vulnerabilities

Webinars

Five Ways to Secure Your Home Office Webcam

Experts warn of backdoor-like behavior within Gigabyte systems

Another 0-Day Looms for Many Western Digital Users

D-Link issues beta hotfix for multiple flaws in DIR-3040 routers

P2P Weakness Exposes Millions of IoT Devices

SonicWall warns users of “imminent ransomware campaign”

Hundreds of vulnerabilities in common Wi-Fi routers affect millions of users

Be aware of exposure of sensitive data on Wi-Fi settings for Canon inkjet printers

Patch now! Insecure Hikvision security cameras can be taken over remotely

Downfall Intel CPU side-channel attack exposes sensitive data

Beyond the Office: Securing Home Devices and Networks Against Corporate Breaches

Security Affairs newsletter Round 439 by Pierluigi Paganini – International edition

CISA and FBI issue alert about Zeppelin ransomware

IT threat evolution Q1 2024

Cisco Warns of Multiple Flaws in Small Business Series Switches

IoT Unravelled Part 3: Security

The High-Stakes Game of Ensuring IoMT Device Security

Half of EDR Tools, Organizations Vulnerable to Clop Ransomware: Researchers

Security Affairs newsletter Round 374 by Pierluigi Paganini

Avoslocker ransomware gang targets US critical infrastructure

FBI warns of ransomware attacks targeting the food and agriculture sector

A week in security (July 19 – August 1)

FBI published a flash alert on Mamba Ransomware attacks

Warning issued about Vice Society ransomware targeting the education sector

Multiple flaws in CODESYS V3 SDK could lead to RCE or DoS?

Nine flaws in CyberPower and Dataprobe solutions expose data centers to hacking

BlackCat Ransomware gang breached over 60 orgs worldwide

Millions put at risk by old, out of date routers

An educational robot security research

Remotely Accessing Secure Kali Pi

Internet safety tips for kids and teens: A comprehensive guide for the modern parent

How to Configure a Router to Use WPA2 in 7 Easy Steps

Over 80,000 Hikvision cameras can be easily hacked

"In our modern world, countless applications rely on radio frequency elements" - an Interview with Larbi Ouiyzme

Nvidia, the ransomware breach with some plot twists

WAGO Industrial Switches affected by multiple flaws

Ranzy Locker ransomware hit tens of US companies in 2021

Your home router might be accessible remotely and threaten your home security

Who and What is Behind the Malware Proxy Service SocksEscort?

For remote workforces, don’t overlook printer security

Spectre and Meltdown Attacks Against Microprocessors

Stay Connected