SecureList

NOVEMBER 14, 2022

We polled our experts from the GReAT team and have gathered a small number of key insights about what APT actors are likely to focus on in 2023. In both cases, we described new UEFI firmware bootkits that managed to propagate malicious components from the deepest layers of the machine up to Windows’ user-land.

Firmware 128

Firmware Surveillance Mobile Telecommunications 128

eSecurity Planet

APRIL 28, 2023

Automated patch management can help prevent security breaches by automatically identifying, downloading, testing, and delivering software and firmware updates to devices and applications through the use of specialized software tools. Software updates are critical for keeping a system’s integrity and security intact.

Software 98

Software Firmware Risk Antivirus 98

eSecurity Planet

MAY 27, 2024

Immediately update your QNAP devices to the most recent firmware to mitigate these issues. Vulnerability in Fluent Bit Exposes Systems to DoS Type of vulnerability: Memory corruption vulnerability. This affected system administrators worldwide. However, for exploitation to occur, users must interact with it.

Backups 67

Backups Authentication DDOS Engineering 67

eSecurity Planet

SEPTEMBER 11, 2023

September 5, 2023 Atlas VPN Leaks Users’ IP Addresses Type of attack: Zero-Day Vulnerability, a new vulnerability that is often difficult to fix since no patch is available on the market yet. The problem: The vulnerabilities ( CVE-2023-39238 , CVE-2023-39239 and CVE-2023-39240 ), with a CVSS v3.1 score of 9.8

VPN 113

VPN Authentication Firmware Phishing 113