Advertising, Firewall and Internet - Cyber Security Informer

Hackers exploit SQL injection zero-day issue in Sophos firewall

Security Affairs

APRIL 26, 2020

Cybersecurity firm Sophos releases an emergency patch to address an SQL injection flaw in its XG Firewall product that has been exploited in the wild. Cybersecurity firm Sophos has released an emergency patch to address an SQL injection zero-day vulnerability affecting its XG Firewall product that has been exploited in the wild.

Firewall

Firewall Passwords Accountability Advertising

Sophos fixed a critical vulnerability in Cyberoam firewalls

Security Affairs

OCTOBER 10, 2019

A vulnerability in Sophos Cyberoam firewalls could be exploited by an attacker to gain access to a target’s internal network without authentication. Sophos addressed a vulnerability in its Cyberoam firewalls that could be exploited by an attacker to gain access to a company’s internal network without providing a password.

Firewall

Firewall VPN Passwords Internet

Spying on satellite internet comms with a $300 listening station

Security Affairs

AUGUST 10, 2020

An attacker could use $300 worth of off-the-shelf equipment to eavesdrop and intercept signals from satellite internet communications. The academic researcher James Pavur, speaking at Black Hat 2020 hacking conference , explained that satellite internet communications are susceptible to eavesdropping and signal interception.

Internet

Internet Internet Advertising Encryption

Safer Internet Day, or why Brad Pitt needed an internet bodyguard

Malwarebytes

FEBRUARY 6, 2024

February 6, 2024 is Safer Internet Day. When I was asked to write about the topic, I misunderstood the question and heard: “can you cover save the internet” and we all agreed that it might be too late for that. The internet has been around for quite some time now, and most of us wouldn’t know what to do without it.

Internet

Internet Internet Media Artificial Intelligence

P2P Weakness Exposes Millions of IoT Devices

Krebs on Security

APRIL 26, 2019

iLnkP2p is bundled with millions of Internet of Things (IoT) devices, including security cameras and Webcams, baby monitors, smart doorbells, and digital video recorders. Many IoT devices can punch holes in firewalls using a feature built into hardware-based routers called Universal Plug and Play (UPnP).

IoT

IoT Firewall Manufacturing Computers and Electronics

Robocall Legal Advocate Leaks Customer Data

Krebs on Security

AUGUST 3, 2020

“Our Litigation Firewall isolates the infection and protects you from harm. The Blacklist Alliance researches TCPA cases to uncover the phone numbers of plaintiffs and sells this data in the form of list-scrubbing services to telemarketers. “TCPA predators operate like malware,” The Blacklist explains on its website.

Mobile

Mobile Marketing Consumer Protection Wireless

Almost 800,000 SonicWall VPN appliances online are vulnerable to CVE-2020-5135

Security Affairs

OCTOBER 16, 2020

. “A buffer overflow vulnerability in SonicOS allows a remote attacker to cause Denial of Service (DoS) and potentially execute arbitrary code by sending a malicious request to the firewall. “This flaw exists pre-authentication and within a component (SSLVPN) which is typically exposed to the public Internet.”

VPN

VPN Firewall Advertising Internet

A daily average of 80,000 printers exposed online via IPP

Security Affairs

JUNE 23, 2020

The Shadowserver Foundation is a nonprofit security organization working altruistically behind the scenes to make the Internet more secure for everyone. The researchers scanned the Internet for printers that are exposing their Internet Printing Protocol (IPP) port online. and printers (or print servers). Pierluigi Paganini.

Internet

Internet Internet Firmware Advertising

Medusa ransomware hit over 300 critical infrastructure organizations until February 2025

Security Affairs

MARCH 13, 2025

The researchers report that the ransomware rely on Ligolo for reverse tunneling and Cloudflared to expose systems securely without direct internet exposure. The threat actors use PsExec to execute scripts, enable RDP access, and modify firewall rules. Attackers use Mimikatz to steal credentials.

Ransomware

Ransomware Encryption Cryptocurrency Insurance

CVE-2020-3452 flaw in Cisco ASA/FTD exploited within hours after the disclosure

Security Affairs

JULY 24, 2020

Cisco fixed CVE-2020-3452 high-severity path traversal flaw in its firewalls that can be exploited by remote attackers to obtain sensitive files from the targeted system. Researchers from Rapid7 scanned the Internet for ASA/FTD devices, it reported the presence of 85,000 units, 398 of which are spread across 17% of the Fortune 500.

Firewall

Firewall Advertising Software Hacking

Juniper Networks addressed many issues in its products

Security Affairs

JULY 10, 2020

Juniper Networks addressed several vulnerabilities in its firewalls, most of them can be exploited by attackers for denial-of-service (DoS) attacks. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Advertising

Advertising Firmware Firewall Internet

DoS attack the caused disruption at US power utility exploited a known flaw

Security Affairs

SEPTEMBER 9, 2019

A DoS attack that caused disruptions at a power utility in the United States exploited a flaw in a firewall used in the facility. The incident took place earlier this year, threat actors exploited a known vulnerability in a firewall used by the affected facility to cause disruption. and 7 p.m., power grid ( Energywire , April 30).

Energy and Utilities

Energy and Utilities Firewall Firmware Advertising

Experts saw 100k+ daily brute-force attacks on RDP during COVID-19 lockdown

Security Affairs

JUNE 29, 2020

Below the recommendations provided by ESET on how to configure remote access correctly: Disable internet-facing RDP. If that is not possible, minimize the number of users allowed to connect directly to the organization’s servers over the internet. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Passwords

Passwords Internet Internet Advertising

On the 20th Safer Internet Day, what was security like back in 2004?

Malwarebytes

FEBRUARY 6, 2023

Today is the 20th Safer Internet Day. 2004 was a key year for several safety activities, encompassing both Safer Internet Day and the Safer Internet Forum. Was the general state of the Internet at the time so bad that all of these events sprang up almost out of necessity? You may be asking, why 2004?

Internet

Internet Internet Adware Spyware

FBI warns cyber actors abusing protocols as new DDoS attack vectors

Security Affairs

JULY 27, 2020

In December 2018, security experts from Trend Micro discovered that some machine-to-machine (M2M) protocols can be abused to attack IoT and industrial Internet of Things (IIoT) systems. Configure network firewalls to block unauthorized IP addresses and disable port forwarding. Pierluigi Paganini. SecurityAffairs – hacking, FBI).

DDOS

DDOS IoT Internet Internet

79 Netgear router models affected by a dangerous Zero-day

Security Affairs

JUNE 18, 2020

Security experts Adam Nichols from GRIMM and d4rkn3ss from the Vietnamese internet service provider VNPT have independently reported a severe unpatched security vulnerability that affects 79 Netgear router models. “This could be accomplished in a number of ways, most notably with firewall rules/whitelisting.”

Firmware

Firmware Internet Internet Advertising

Death of the VPN: A Security Eulogy

SecureWorld News

SEPTEMBER 4, 2022

VPNs got us all from crawling to walking in the early days of the internet, but security needs have outpaced VPNs' abilities to deliver true security and privacy for users and organizations so we now look to more advanced solutions to keep us cybersafe. The final nail in the coffin of VPN came in early 2020.

VPN

VPN Internet Internet Encryption

TeamTNT is the first cryptomining bot that steals AWS credentials

Security Affairs

AUGUST 18, 2020

The worm also steals local credentials, and scans the internet for misconfigured Docker platforms.” Use firewall rules to limit any access to Docker APIs. We strongly recommend using a whitelisted approach for your firewall ruleset. ” ~ Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Firewall

Firewall Advertising Malware Cryptocurrency

Experts hacked 28,000 unsecured printers to raise awareness of printer security issues

Security Affairs

AUGUST 27, 2020

To perform the experiment, we used Internet of Things (IoT) search engines to search for open devices that utilized common printer ports and protocols. After filtering out most of the false positives, we were left with more than 800,000 printers that had network printing features enabled and were accessible over the internet.

Hacking

Hacking IoT Firmware Internet

New Ttint IoT botnet exploits two zero-days in Tenda routers

Security Affairs

OCTOBER 5, 2020

Unlike other IoT DDoS botnets, Ttint implements 12 remote access functions such as Socket5 proxy for router devices, tampering with router firewall and DNS settings, executing remote custom system commands. ” ~ Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. ” concludes the report.

IoT

IoT Firmware Advertising DNS

The Data Breach "Personal Stash" Ecosystem

Troy Hunt

JANUARY 29, 2024

The data of a significant portion of the global internet-using population, just freely flowing backwards and forwards not just in the shady corners of "the dark web" but traded out there in the clear on mainstream websites. link] — Troy Hunt (@troyhunt) January 22, 2024 It's like I've seen it all before!

Data breaches

Data breaches Passwords Advertising Personal Security

Brazil expert discovers Oracle flaw that allows massive DDoS attacks

Security Affairs

OCTOBER 17, 2018

The exploitation of this vulnerability could cause major problems on the Internet. million servers running RPCBIND on the Internet. On that day, one of the web application firewalls (WAFs) installed in the XLabs SOC (security operations center) detected an abnormal pattern of network traffic that caught the eye of Mauricio.

DDOS

DDOS Internet Internet Advertising

Hackers target Docker servers to deploy the new Kinsing cryptocurrency miner

Security Affairs

APRIL 6, 2020

Cloud security firm Aqua Security uncovered a hacking campaign carried out during the past months, hackers are scanning the Internet for Docker servers running API ports exposed without a password. Experts also recommend to access admin endpoints only through firewall or VPN gateway. ” concludes the experts. Pierluigi Paganini.

Cryptocurrency

Cryptocurrency Malware Advertising VPN

Chinese police arrested the operator of unauthorized VPN service that made $1.6 million from his activity

Security Affairs

JANUARY 17, 2020

China continues to intensify the monitoring of the cyberspace applying and persecution of VPN services that could be used to bypass its censorship system known as the Great Firewall. The Great Firewall project already blocked access to more hundreds of the world’s 1,000 top websites, including Google, Facebook, Twitter, and Dropbox.

VPN

VPN Firewall Advertising Media

Microsoft’s case study: Emotet took down an entire network in just 8 days

Security Affairs

APRIL 4, 2020

Microsoft declared that an Emotet attack took down an organization’s network by overheating all the computers and bringing its Internet access down. “He’d been told the organization had an extensive system to prevent cyberattacks, but this new virus evaded all their firewalls and antivirus software. . Pierluigi Paganini.

Antivirus

Antivirus Malware Phishing Advertising

Critical zero-days discovered in VxWorks RTOS, billions of devices at risk

Security Affairs

JULY 30, 2019

Even a device that is reaching outbound to the internet could be attacked and taken over. “As an example of this scenario, consider how such an attack can take over the SonicWall firewall, which runs on the impacted VxWorks OS.” Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Risk

Risk IoT Firewall DNS

Flaws in leading industrial remote access systems allow disruption of operations

Security Affairs

OCTOBER 1, 2020

CISA also published a security advisory for these vulnerabilities, the US agency provided the following recommendations to the users: Minimize network exposure for all control system devices and/or systems, and ensure that they are not accessible from the Internet. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Advertising

Advertising Authentication VPN Firewall

US Govt agencies detail North Korea-linked HIDDEN COBRA malware

Security Affairs

FEBRUARY 14, 2020

Enable a personal firewall on agency workstations, configured to deny unsolicited connection requests. Scan all software downloaded from the Internet prior to executing. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. .

Malware

Malware Passwords Advertising Antivirus

Cyber Defense Magazine – September 2019 has arrived. Enjoy it!

Security Affairs

SEPTEMBER 4, 2019

In addition, we’re shooting for 7x24x365 uptime as we continue to scale with improved Web App Firewalls, Content Deliver Networks (CDNs) around the Globe, Faster and More Secure DNS and CyberDefenseMagazineBackup.com up and running as an array of live mirror sites.

DNS

DNS Advertising Firewall Mobile

Illegal Content and the Blockchain

Schneier on Security

MARCH 17, 2021

There are advertisements, and several prayers. The philosophy behind Bitcoin traces to the earliest days of the open internet. Two distinct forks would soon emerge, one behind China’s Great Firewall and one outside. There are digital images, including one of Nelson Mandela.

Cryptocurrency

Cryptocurrency Media Government Firewall

5 Ways to Protect Yourself from IP Address Hacking

Security Affairs

AUGUST 20, 2019

Your IP or Internet Protocol address is your digital identity on the internet. It may be used to download unauthorized stuff or may be used for uploading disputed content on the internet. It disguises your original identity and location and allows you to access the internet from a remote server. Secure Your Router.

Hacking

Hacking VPN Internet Internet

The strengths and weaknesses of different VPN protocols

Security Affairs

APRIL 26, 2019

One in four internet users use a VPN regularly, but how much does the average user know about what goes on behind the software? Different protocols create different ways that connect your device and the internet through encrypted tunnels. Firewalls can easily block it because it only communicates over UDP.

VPN

VPN Encryption Firewall Internet

US govt agencies share details of the China-linked espionage malware Taidoor

Security Affairs

AUGUST 4, 2020

Enable a personal firewall on agency workstations, configured to deny unsolicited connection requests. Scan all software downloaded from the Internet prior to executing. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

Malware

Malware Government Passwords Advertising

Hackers abusing the Ngrok platform phishing attacks

Security Affairs

FEBRUARY 16, 2021

ngrok is a cross-platform application used to expose a local development server to the Internet, the server appears to be hosted on a subdomain of ngrok (e.g., The experts pointed out that ngrok server software runs on a VPS or a dedicated server and can bypass NAT mapping and Firewall restriction. 4f421deb219c[.]ngrok[.]io)

Phishing

Phishing Cybercrime Mobile Internet

NSA urges Windows Users and admins to Patch BlueKeep flaw

Security Affairs

JUNE 5, 2019

In addition to installing the patches from Microsoft, Windows users can mitigate attacks: Block TCP Port 3389 at your firewalls, especially any perimeter firewalls exposed to the internet. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Enable Network Level Authentication. Pierluigi Paganini.

Penetration Testing

Penetration Testing Firewall Authentication Advertising

Malvertising Campaign Targets IoT Devices: GeoEdge

eSecurity Planet

AUGUST 9, 2021

A malicious advertising campaign originating out of Eastern Europe and operating since at least mid-June is targeting Internet of Things (IoT) devices connected to home networks, according to executives with GeoEdge, which offers ad security and quality solutions to online and mobile advertisers. billion in 2021 , with 55.2

IoT

IoT Advertising Identity Theft Mobile

Attackers are hacking NSC Linear eMerge E3 building access systems to launch DDoS attacks

Security Affairs

FEBRUARY 3, 2020

L inear eMerge E3 smart building access systems designed by N ortek Security & Control (NSC) are affected by a severe vulnerability (CVE-2019-7256) that has yet to be fixed and attackers are actively scanning the internet for vulnerable devices. Passwords can be found in p roduct documentation and compiled lists available on the Internet.”

DDOS

DDOS Hacking Internet Internet

Malvertising Is a Cybercrime Heavyweight, Not an Underdog

SecureWorld News

MARCH 29, 2024

The concept of the term "malvertising" (a portmanteau of "malicious advertising") suggests an overlap with ads, albeit dodgy ones, and therefore fuels the fallacy that its impact hardly goes beyond frustration. Again, a raid as harmful as that commences with what appears to be garden-variety deceptive advertising trickery.

Cybercrime

Cybercrime Advertising Engineering Antivirus

WECON PI Studio HMI software affected by code execution flaws

Security Affairs

OCTOBER 8, 2018

Specifically, users should: Minimize network exposure for all control system devices and/or systems, and ensure that they are not accessible from the Internet. Locate control system networks and remote devices behind firewalls, and isolate them from the business network. Pierluigi Paganini. Security Affairs – WECON, SCADA ).

Software

Software Manufacturing Advertising VPN

Zyxel addresses Zero-Day vulnerability in NAS devices

Security Affairs

FEBRUARY 25, 2020

“Do not leave the product directly exposed to the internet. If possible, connect it to a security router or firewall for additional protection,” Zyxel recommends. . CERT/CC also provides mitigations such as blocking access to the web interface (80/tcp and 443/tcp) and avoiding exposing the NAS to the Internet.

Authentication

Authentication Advertising Firmware Internet

China used the Great Cannon DDoS Tool against forum used by Hong Kong protestors

Security Affairs

DECEMBER 5, 2019

The Great Cannon has been used in the past to knock-out two anti-censorship GitHub pages and the GreatFire.org (a portal that exposes internet censorship worldwide ). ” ~ Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

DDOS

DDOS Firewall Advertising Government

API Security and Hackers: What?s the Need?

Security Affairs

MAY 30, 2020

It is better to use ICAP (Internet Content Adaptation Protocol) servers or excellent Antivirus systems to protect the data of your company. API Firewalling. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

Authentication

Authentication Firewall Encryption Passwords

DanaBot banking Trojan evolves and now targets European countries

Security Affairs

SEPTEMBER 22, 2018

Sniffer plug-in – injects malicious scripts into a victim’s browser, usually while visiting internet banking sites. The malware also implemented the RDP plug-in because the protocol is less likely to be blocked by firewalls, experts also highlighted that the RDPWrap allows several users to use the same machine concurrently.

Banking

Banking Advertising VPN Architecture

CISA’s advisory warns of notable increase in LokiBot malware

Security Affairs

SEPTEMBER 22, 2020

The malicious code was initially advertised on many hacking forums for up to $300, later other threat actors started offering it for less than $80 in the cybercrime underground. Enable a personal firewall on agency workstations, configured to deny unsolicited connection requests. See Using Caution with Email Attachments.

Malware

Malware Passwords Advertising Antivirus

Hackers exploit SQL injection zero-day issue in Sophos firewall

Sophos fixed a critical vulnerability in Cyberoam firewalls

Trending Sources

Spying on satellite internet comms with a $300 listening station

Safer Internet Day, or why Brad Pitt needed an internet bodyguard

P2P Weakness Exposes Millions of IoT Devices

Robocall Legal Advocate Leaks Customer Data

Almost 800,000 SonicWall VPN appliances online are vulnerable to CVE-2020-5135

A daily average of 80,000 printers exposed online via IPP

Medusa ransomware hit over 300 critical infrastructure organizations until February 2025

CVE-2020-3452 flaw in Cisco ASA/FTD exploited within hours after the disclosure

Juniper Networks addressed many issues in its products

DoS attack the caused disruption at US power utility exploited a known flaw

Experts saw 100k+ daily brute-force attacks on RDP during COVID-19 lockdown

On the 20th Safer Internet Day, what was security like back in 2004?

FBI warns cyber actors abusing protocols as new DDoS attack vectors

79 Netgear router models affected by a dangerous Zero-day

Death of the VPN: A Security Eulogy

TeamTNT is the first cryptomining bot that steals AWS credentials

Experts hacked 28,000 unsecured printers to raise awareness of printer security issues

New Ttint IoT botnet exploits two zero-days in Tenda routers

The Data Breach "Personal Stash" Ecosystem

Brazil expert discovers Oracle flaw that allows massive DDoS attacks

Hackers target Docker servers to deploy the new Kinsing cryptocurrency miner

Chinese police arrested the operator of unauthorized VPN service that made $1.6 million from his activity

Microsoft’s case study: Emotet took down an entire network in just 8 days

Critical zero-days discovered in VxWorks RTOS, billions of devices at risk

Flaws in leading industrial remote access systems allow disruption of operations

US Govt agencies detail North Korea-linked HIDDEN COBRA malware

Cyber Defense Magazine – September 2019 has arrived. Enjoy it!

Illegal Content and the Blockchain

5 Ways to Protect Yourself from IP Address Hacking

The strengths and weaknesses of different VPN protocols

US govt agencies share details of the China-linked espionage malware Taidoor

Hackers abusing the Ngrok platform phishing attacks

NSA urges Windows Users and admins to Patch BlueKeep flaw

Malvertising Campaign Targets IoT Devices: GeoEdge

Attackers are hacking NSC Linear eMerge E3 building access systems to launch DDoS attacks

Malvertising Is a Cybercrime Heavyweight, Not an Underdog

WECON PI Studio HMI software affected by code execution flaws

Zyxel addresses Zero-Day vulnerability in NAS devices

China used the Great Cannon DDoS Tool against forum used by Hong Kong protestors

API Security and Hackers: What?s the Need?

DanaBot banking Trojan evolves and now targets European countries

CISA’s advisory warns of notable increase in LokiBot malware

Stay Connected