Firmware, Software and System Administration

New iLOBleed Rootkit, the first time ever that malware targets iLO firmware

Security Affairs

DECEMBER 30, 2021

A previously unknown rootkit, dubbed iLOBleed, was used in attacks aimed at HP Enterprise servers that wiped data off the infected systems. The module has full access to all the firmware, hardware, software, and operating system installed on the server. . ” reads the report published by the expers.

Firmware

Firmware Malware System Administration Technology

China-linked APT BlackTech was spotted hiding in Cisco router firmware

Security Affairs

SEPTEMBER 27, 2023

US and Japanese authorities warn that a China-linked APT BlackTech planted backdoor in Cisco router firmware to hack the businesses in both countries. The state-sponsored hackers was observed using a custom firmware backdoor which was enabled and disabled by sending specially crafted TCP or UDP packets to the devices.

Firmware

Firmware Telecommunications System Administration Malware

Who and What is Behind the Malware Proxy Service SocksEscort?

Krebs on Security

JULY 25, 2023

Spur tracks SocksEscort as a malware-based proxy offering, which means the machines doing the proxying of traffic for SocksEscort customers have been infected with malicious software that turns them into a traffic relay. Usually, these users have no idea their systems are compromised. WHO’S BEHIND SOCKSESCORT?

Malware

Malware VPN Internet Internet

USBAnywhere BMC flaws expose Supermicro servers to hack

Security Affairs

SEPTEMBER 3, 2019

Researchers at firmware security firm Eclypsium discovered multiple vulnerabilities referred as USBAnywhere that could be exploited to potentially allow an attacker to take over the baseboard management controller (BMC) for three different models of Supermicro server boards: the X9, X10, and X11.

Hacking

Hacking Firmware Media Authentication

A bug is about to confuse a lot of computers by turning back time 20 years

Malwarebytes

OCTOBER 22, 2021

Other equipment became faulty several months before or after that date, requiring software or firmware patches to restore their function. It is also good for system administrators to make a mental note of the date October 24, 2021. Mitigation. Since the affected versions of GPSD are versions 3.20

Authentication

Authentication System Administration Firmware Passwords

Advanced threat predictions for 2023

SecureList

NOVEMBER 14, 2022

Last June, Google’s TAG team released a blog post documenting attacks on Italian and Kazakh users that they attribute to RCS Lab, an Italian offensive software vendor. Although 2022 did not feature any mobile intrusion story on the scale of the Pegasus scandal, a number of 0-days have still been exploited in the wild by threat actors.

Firmware

Firmware Surveillance Mobile Telecommunications

Ransomware Detection at Chip Level? Yes, Says Intel

SecureWorld News

JANUARY 13, 2021

“Even when ransomware infiltrates a system, Intel vPro platform PCs with Intel Hardware Shield can help restrict lateral movement with hardware-enforced isolation of virtualized containers, memory protections, secure boot and below the OS firmware security.”. Intel's Hardware Shield and Threat Detection Technology.

Ransomware

Ransomware Computers and Electronics Firmware Threat Detection

Mice “taking over the world!”, one Windows machine at a time

Malwarebytes

AUGUST 25, 2021

The problem stems from the fact that when you plug a Razer device into Windows 10 or Windows 11 computer, the operating system tries to be helpful by automatically downloading and installing the Razer software that allows you to alter the settings for that mouse. The researcher also warned there are probably more out there too.

System Administration

System Administration Firmware Software

Feds Warn About Critical Infrastructure Ransomware Attacks, Vulnerabilities

eSecurity Planet

FEBRUARY 15, 2022

Implement network segmentation , “such that all machines on your network are not accessible from every other machine” Update antivirus software on all hosts and enable real-time detection. Update and patch operating systems, software, and firmware as soon as updates and patches are released.

Ransomware

Ransomware Encryption Backups Accountability

Vulnerability Management as a Service: Top VMaaS Providers

eSecurity Planet

OCTOBER 24, 2022

There are 20,000 or more new software and hardware vulnerabilities every year, yet only a few hundred might be actively exploited. VMaaS is a way to deliver these services via the cloud rather than downloading and running on-premises software. That process can be overwhelming. What is Vulnerability Management as a Service?

Software

Software Risk Healthcare Data breaches

Defending Against Misconfigured MFA & PrintNightmare Vulnerabilities

eSecurity Planet

MARCH 21, 2022

Mitigations that would consist of restricting permissions for driver installations could be challenging because you have to modify Windows registry entries, so if it’s not executed correctly, you might damage the system. Also read: Best Patch Management Software. Protecting Against PrintNightmare, MFA Exploits. Network Best Practices.

VPN

VPN Accountability Authentication Passwords

Automated Patch Management: Definition, Tools & How It Works

eSecurity Planet

APRIL 28, 2023

Automated patch management can help prevent security breaches by automatically identifying, downloading, testing, and delivering software and firmware updates to devices and applications through the use of specialized software tools. Software updates are critical for keeping a system’s integrity and security intact.

Software

Software Firmware Risk Antivirus

Machine Identities are Essential for Securing Smart Manufacturing

Security Boulevard

FEBRUARY 28, 2022

With this unique identity in place, IT system administrators can track each device throughout its lifecycle, communicate securely with it, and prevent it from executing harmful processes. If a device exhibits unexpected behavior, administrators can simply revoke its privileges. Related posts.

Manufacturing

Manufacturing IoT Authentication Artificial Intelligence

How to Improve SD-WAN Security

eSecurity Planet

MAY 19, 2022

As the modern workforce becomes increasingly mobile and enterprises branch out and grow, software-defined wide area networks ( SD-WAN ) have become a popular choice in the evolution of networking. Traditional Networks vs Software-Define Networks (SDN). Also read : Best Business Continuity Software. Jump to: What is SD-WAN?

Firewall

Firewall Architecture Software Backups

Vulnerability Recap 5/27/24 – Google, Microsoft & GitLab Fixes

eSecurity Planet

MAY 27, 2024

Immediately update your QNAP devices to the most recent firmware to mitigate these issues. Vulnerability in Fluent Bit Exposes Systems to DoS Type of vulnerability: Memory corruption vulnerability. This affected system administrators worldwide.

Backups

Backups Authentication DDOS Engineering

Weekly Vulnerability Recap – Sept. 11, 2023 – Android Update Fixes 33 Vulnerabilities

eSecurity Planet

SEPTEMBER 11, 2023

Attackers target certain administrative API functions on these devices using specially crafted input. The fix: ASUS released firmware updates to address the vulnerabilities. The fix: Users should follow SEL’s security updates and latest software versions pages for fixes. version of Superset.

VPN

VPN Authentication Firmware Phishing

macOS 11’s hidden security improvements

Malwarebytes

AUGUST 18, 2021

When a new release of an operating system comes out, normal people find out what’s new by attending developer conferences, reading release notes, changelogs, reviews. Me, I download the software development kit (SDK) for the new version, and diff it with the current version. Why you probably shouldn’t use NO_SMT.

Firmware

Firmware Architecture Risk Engineering

Cyber Security Informer

New iLOBleed Rootkit, the first time ever that malware targets iLO firmware

China-linked APT BlackTech was spotted hiding in Cisco router firmware

Trending Sources

Who and What is Behind the Malware Proxy Service SocksEscort?

USBAnywhere BMC flaws expose Supermicro servers to hack

A bug is about to confuse a lot of computers by turning back time 20 years

Advanced threat predictions for 2023

Ransomware Detection at Chip Level? Yes, Says Intel

Mice “taking over the world!”, one Windows machine at a time

Feds Warn About Critical Infrastructure Ransomware Attacks, Vulnerabilities

Vulnerability Management as a Service: Top VMaaS Providers

Defending Against Misconfigured MFA & PrintNightmare Vulnerabilities

Automated Patch Management: Definition, Tools & How It Works

Machine Identities are Essential for Securing Smart Manufacturing

How to Improve SD-WAN Security

Vulnerability Recap 5/27/24 – Google, Microsoft & GitLab Fixes

Weekly Vulnerability Recap – Sept. 11, 2023 – Android Update Fixes 33 Vulnerabilities

macOS 11’s hidden security improvements

Stay Connected