Search cyberveille.decio.ch

Found 37 bookmarks

Newest

The Pumpkin Eclipse

Executive Summary Lumen Technologies’ Black Lotus Labs identified a destructive event, as over 600,000 small office/home office (SOHO) routers were taken offline belonging to a single internet service provider (ISP). The incident took place over a 72-hour period between October 25-27, rendered the infected devices permanently inoperable, and required a hardware-based replacement. Public scan data Lumen Technologies’ Black Lotus Labs identified a destructive event, as over 600,000 small office/home office (SOHO) routers were taken offline belonging to a single internet service provider (ISP).

#lumen #EN #2024 #IoT #routers #destructive #SOHO #ISP #72-hour #Chalubo

·blog.lumen.com·May 30, 2024

The Pumpkin Eclipse

QNAPping At The Wheel (CVE-2024-27130 and friends)

Infosec is, at it’s heart, all about that data. Obtaining access to it (or disrupting access to it) is in every ransomware gang and APT group’s top-10 to-do-list items, and so it makes sense that our research voyage would, at some point, cross paths with products intended to manage - and safeguard - this precious resource.

#watchtowr #EN #2024 #CVE-2024-27130 #QNAPping #QNAP #NAS #IoT #vulnerability

·labs.watchtowr.com·May 20, 2024

QNAPping At The Wheel (CVE-2024-27130 and friends)

Eight Arms to Hold You: The Cuttlefish Malware

Executive Summary: The Black Lotus Labs team at Lumen Technologies is tracking a malware platform we’ve named Cuttlefish, that targets networking equipment, specifically enterprise-grade small office/home office (SOHO) routers. This malware is modular, designed primarily to steal authentication material found in web requests that transit the router from the adjacent local area network (LAN). A

#lumen #EN #2024 #Cuttlefish #Malware #SOHO #routers #DNS-hijacking #sniffing #iot

·blog.lumen.com·May 3, 2024

Eight Arms to Hold You: The Cuttlefish Malware

Hacker free-for-all fights for control of home and office routers everywhere

How and why nation-state hackers and cybercriminals coexist in the same router botnet.

#arstechnica #EN #2024 #SOHO #routers #home #IoT #APT #PawnStorm #MooBot

·arstechnica.com·May 3, 2024

Hacker free-for-all fights for control of home and office routers everywhere

Siemens Industrial Product Impacted by Exploited Palo Alto Firewall Vulnerability

The recently disclosed Palo Alto Networks firewall vulnerability tracked as CVE-2024-3400, which has been exploited in attacks for at least one month, has been found to impact one of Siemens’ industrial products. In an advisory published late last week, Siemens revealed that its Ruggedcom APE1808 devices configured with a Palo Alto Networks virtual next-generation firewall (NGFW) could be affected by CVE-2024-3400.

#securityweek #EN #2024 #CVE-2024-3400 #Palo #Alto #Networks #firewall #Siemens #IoT

·securityweek.com·Apr 23, 2024

Siemens Industrial Product Impacted by Exploited Palo Alto Firewall Vulnerability

Vulnerabilities Identified in LG WebOS

As the creator of the world’s first smart home cybersecurity hub, Bitdefender regularly audits popular IoT hardware for vulnerabilities. This research paper is part of a broader program that aims to shed light on the security of the world’s best-sellers in the IoT space. This report covers vulnerabilities discovered while researching the LG WebOS TV operating system.

#bitdefender #EN #2024 #LG #WebOS #TV #iot #vulnerability #CVE-2023-6317 #CVE-2023-6318 #CVE-2023-6319 #CVE-2023-6320

·bitdefender.com·Apr 10, 2024

Vulnerabilities Identified in LG WebOS

#bitdefender #EN #2024 #LG #WebOS #TV #iot #vulnerability #CVE-2023-6317 #CVE-2023-6318 #CVE-2023-6319 #CVE-2023-6320

·bitdefender.com·Apr 10, 2024

Vulnerabilities Identified in LG WebOS

The Darkside of TheMoon

Executive Summary The Black Lotus Labs team at Lumen Technologies has identified a multi-year campaign targeting end-of-life (EoL) small home/small office (SOHO) routers and IoT devices, associated with an updated version of “TheMoon” malware. TheMoon, which emerged in 2014, has been operating quietly while growing to over 40,000 bots from 88 countries in January and

#lumen #EN #2020 #SOHO #TheMoon #campaign #EoL #routers #IoT #proxy

·blog.lumen.com·Mar 30, 2024

The Darkside of TheMoon

Popular video doorbells can be easily hijacked, researchers find

Walmart and Temu pulled the affected doorbell cameras from their stores. Amazon and others have taken no action.

#techcrunch #EN #2024 #doorbells #Walmart #IoT #EKEN

·techcrunch.com·Mar 3, 2024

Hackers can infect network-connected wrenches to install ransomware

Researchers identify 23 vulnerabilities, some of which can exploited with no authentication.

#arstechnica #EN #2024 #wrenches #ransomware #IoT

·arstechnica.com·Jan 13, 2024

Hackers can infect network-connected wrenches to install ransomware

Multiple vulnerabilities in Lantronix EDS-MD IoT gateway for medical devices

The Lantronix EDS-MS is an "IoT gateway for mission critical medical devices and equipment connectivity". It is affected by multiple vulnerabilities.

#pentagrid #EN #2024 #Lantronix #EDS-MS #IoT #ritical #medical #devices #helath #Vulnerabilities

·pentagrid.ch·Jan 8, 2024

Multiple vulnerabilities in Lantronix EDS-MD IoT gateway for medical devices

P2Pinfect - New Variant Targets MIPS Devices

Cado Security Labs has been monitoring on the rapid growth of a cross-platform botnet, named “P2Pinfect”. Here's the latest updates.

#cadosecurity #EN #2023 #MIPS #IoT #routers #botnet

·cadosecurity.com·Dec 4, 2023

P2Pinfect - New Variant Targets MIPS Devices

IoT Under Siege: The Anatomy of the Latest Mirai Campaign Leveraging Multiple IoT Exploits

Since March 2023, Unit 42 researchers have observed threat actors leveraging several IoT vulnerabilities to spread a variant of the Mirai botnet.

#unit42 #EN #2023 #Mirai #analysis #IoT

·unit42.paloaltonetworks.com·Jun 22, 2023

IoT Under Siege: The Anatomy of the Latest Mirai Campaign Leveraging Multiple IoT Exploits

A simple bug exposed access to thousands of smart security alarm systems

The vulnerability — now fixed — was discovered in a cloud-based system that allows customers to remotely manage their security alarm systems.

#techcrunch #EN #2023 #security #cybersecurity #home-security-systems #smart #alarm #systems #IoT #vulnerability

·techcrunch.com·Jun 17, 2023

A simple bug exposed access to thousands of smart security alarm systems

Old Wine in the New Bottle: Mirai Variant Targets Multiple IoT Devices

We analyze Mirai variant IZ1H9, which targets IoT devices. Our overview includes campaigns observed, botnet configuration and vulnerabilities exploited.

#paloaltonetworks #EN #2023 #Mirai #IZ1H9 #IoT #campaigns

·unit42.paloaltonetworks.com·May 27, 2023

Old Wine in the New Bottle: Mirai Variant Targets Multiple IoT Devices

Popular Android TV boxes sold on Amazon are laced with malware

The malware-infected AllWinner and RockChip-powered Android TV models are still available to purchase on Amazon.

#techcrunch #EN #2023 #amazon #android-tv #malware #rockchip #Android #IoT #AllWinner #Amazon

·techcrunch.com·May 21, 2023

Lemon Group’s Cybercriminal Businesses Built on Preinfected Devices

An overview of the Lemon Group’s use of preinfected mobile devices, and how this scheme is potentially being developed and expanded to other internet of things (IoT) devices. This research was presented in full at the Black Hat Asia 2023 Conference in Singapore in May 2023.

#trendmicro #EN #2023 #malware #cyber-crime #LemonGroup #Preinfected #Guerrilla #Android #mobile #mobile-device #IoT #AndroidOS_Guerilla

·trendmicro.com·May 21, 2023

Lemon Group’s Cybercriminal Businesses Built on Preinfected Devices

Realtek SDK Vulnerability Attacks Highlight IoT Supply Chain Threats

We observed a recent spate of supply chain attacks attempting to exploit CVE-2021-35394, affecting IoT devices with chipsets made by Realtek.

#unit42 #EN #2023 #CVE-2021-35394 #IoT #devices #supplychain #attacks #Realtek

·unit42.paloaltonetworks.com·Jan 24, 2023

Realtek SDK Vulnerability Attacks Highlight IoT Supply Chain Threats

We observed a recent spate of supply chain attacks attempting to exploit CVE-2021-35394, affecting IoT devices with chipsets made by Realtek.

#unit42 #EN #2023 #CVE-2021-35394 #IoT #devices #supplychain #attacks #Realtek

·unit42.paloaltonetworks.com·Jan 24, 2023

Realtek SDK Vulnerability Attacks Highlight IoT Supply Chain Threats

La vidéosurveillance de l’armée présente des failles de sécurité

Un audit interne révèle que les appareils qui surveillent les places d’armes ou les centres logistiques sont mal protégés

#letemps #FR #CH #2023 #vidéosurveillance #cameras #webcams #IoT #failles

·letemps.ch·Jan 24, 2023

La vidéosurveillance de l’armée présente des failles de sécurité

Un audit interne révèle que les appareils qui surveillent les places d’armes ou les centres logistiques sont mal protégés

#letemps #FR #CH #2023 #vidéosurveillance #cameras #webcams #IoT #failles

·letemps.ch·Jan 24, 2023

La vidéosurveillance de l’armée présente des failles de sécurité

Suisse: Caméras de surveillance de l’armée jugées trop vulnérables

Obsolètes, des caméras sont des «proies faciles pour les pirates», conclut un audit interne qui affirme que l’armée néglige sa sécurité informatique.

#20min #FR #CH #2023 #IoT #armée #camera #webcam #audit #vulnérables

·20min.ch·Jan 24, 2023

Suisse: Caméras de surveillance de l’armée jugées trop vulnérables

Obsolètes, des caméras sont des «proies faciles pour les pirates», conclut un audit interne qui affirme que l’armée néglige sa sécurité informatique.

#20min #FR #CH #2023 #IoT #armée #camera #webcam #audit #vulnérables

·20min.ch·Jan 24, 2023

Suisse: Caméras de surveillance de l’armée jugées trop vulnérables

Obsolètes, des caméras sont des «proies faciles pour les pirates», conclut un audit interne qui affirme que l’armée néglige sa sécurité informatique.

#20min #FR #CH #2023 #IoT #armée #camera #webcam #audit #vulnérables

·20min.ch·Jan 24, 2023

Suisse: Caméras de surveillance de l’armée jugées trop vulnérables

Obsolètes, des caméras sont des «proies faciles pour les pirates», conclut un audit interne qui affirme que l’armée néglige sa sécurité informatique.

#20min #FR #CH #2023 #IoT #armée #camera #webcam #audit #vulnérables

·20min.ch·Jan 24, 2023

Suisse: Caméras de surveillance de l’armée jugées trop vulnérables

Obsolètes, des caméras sont des «proies faciles pour les pirates», conclut un audit interne qui affirme que l’armée néglige sa sécurité informatique.

#20min #FR #CH #2023 #IoT #armée #camera #webcam #audit #vulnérables

·20min.ch·Jan 24, 2023

Suisse: Caméras de surveillance de l’armée jugées trop vulnérables

Obsolètes, des caméras sont des «proies faciles pour les pirates», conclut un audit interne qui affirme que l’armée néglige sa sécurité informatique.

#20min #FR #CH #2023 #IoT #armée #camera #webcam #audit #vulnérables

·20min.ch·Jan 24, 2023

Suisse: Caméras de surveillance de l’armée jugées trop vulnérables

Obsolètes, des caméras sont des «proies faciles pour les pirates», conclut un audit interne qui affirme que l’armée néglige sa sécurité informatique.

#20min #FR #CH #2023 #IoT #armée #camera #webcam #audit #vulnérables

·20min.ch·Jan 24, 2023

Suisse: Caméras de surveillance de l’armée jugées trop vulnérables

Obsolètes, des caméras sont des «proies faciles pour les pirates», conclut un audit interne qui affirme que l’armée néglige sa sécurité informatique.

#20min #FR #CH #2023 #IoT #armée #camera #webcam #audit #vulnérables

·20min.ch·Jan 24, 2023

Suisse: Caméras de surveillance de l’armée jugées trop vulnérables

Connected medical devices are the Achilles' heel of healthcare orgs - Help Net Security

The rising adoption of connected medical devices is accelerating cyberattacks, according to Capterra’s Medical IoT Survey.

#helpnetsecurity #EN #2022 #IoT #connected #medical #devices #statistcs #healthcare #Survey

·helpnetsecurity.com·Dec 5, 2022

Connected medical devices are the Achilles' heel of healthcare orgs - Help Net Security