CSO Magazine

JANUARY 21, 2022

While MoonBounce is not the first UEFI rootkit found in the wild -- LoJax , MosaicRegressor are two examples-- these types of implants are not common because they require knowledge of low-level firmware programming. To read this article in full, please click here

Firmware 116

Firmware Government Software 116

Schneier on Security

MAY 12, 2020

"All the evil maid needs to do is unscrew the backplate, attach a device momentarily, reprogram the firmware, reattach the backplate, and the evil maid gets full access to the laptop," says Ruytenberg, who plans to present his Thunderspy research at the Black Hat security conference this summer­or the virtual conference that may replace it.

Firmware 274

Firmware Manufacturing Encryption Hacking 274

CSO Magazine

MAY 31, 2023

Researchers warn that the UEFI firmware in many motherboards made by PC hardware manufacturer Gigabyte injects executable code inside the Windows kernel in an unsafe way that can be abused by attackers to compromise systems. To read this article in full, please click here

Firmware 103

Firmware Manufacturing Risk 103

Schneier on Security

SEPTEMBER 17, 2020

Another article : Patches are not immediately available at the time of writing. When they’ll be, they’ll most likely be integrated as firmware or operating system updates for Bluetooth capable devices. However, patches are expected to be available at one point.

Authentication 363

Authentication Social Engineering Firmware Engineering 363

CSO Magazine

AUGUST 11, 2022

To read this article in full, please click here Since then, many researchers, both from academia and the private sector, have been studying the low-level operation of CPUs and other hardware components and have been uncovering more and more issues.

Firmware 138

Firmware Manufacturing 138

Malwarebytes

MARCH 10, 2023

The malware was likely deployed in 2021, and was able to persist on the appliances tenaciously, even surviving firmware upgrades. The malware checked for the presence of a firmware upgrade every ten seconds. The malware was able to steal user credentials and provide shell access.

Firmware 98

Firmware Malware Encryption Authentication 98

CSO Magazine

DECEMBER 6, 2022

Researchers have found three vulnerabilities in AMI MegaRAC, a baseband management controller (BMC) firmware used by multiple server manufacturers. If exploited, the flaws could allow attackers to remotely control servers, deploy malware and firmware implants, or trigger damaging actions that leave them inoperable.

Firmware 80

Firmware Manufacturing Malware 80

SecureWorld News

DECEMBER 8, 2024

This article explores these threats, expected timelines, and steps organizations can take to prepare for a future where quantum decryption becomes a reality. Ensure quantum-ready hardware: Require that new infrastructure device purchases, such as routers and firewalls, have quantum-resistant or upgradable firmware.

Encryption 118

Encryption Firewall Education Firmware 118

CSO Magazine

JANUARY 19, 2022

To read this article in full, please click here (Insider Story) First announced in 2020, the Pluton is a security processor that Microsoft developed in partnership with AMD and Qualcomm to provide what they called “chip to cloud” security.

Firmware 112

Firmware 112

Security Boulevard

FEBRUARY 14, 2021

Once again, supply chain risks are in the news, with Bloomberg reporting attacks compromising servers via malicious firmware updates. While we don’t have many technical details about the attacks reported in the Bloomberg article, the risk associated with the supply chain remains a serious concern for both the public and private sectors.

Firmware 69

Firmware Risk 69

Security Boulevard

JUNE 25, 2024

In the dynamic world of data centers, where uptime and security are paramount, firmware management often goes under the radar. However, as data centers become increasingly sophisticated, efficient firmware management is crucial for maintaining both security and operational efficiency.

Firmware 59

Firmware 59

Security Boulevard

DECEMBER 20, 2023

Firmware security analysis is a critical aspect of modern cybersecurity. As our devices become more interconnected and reliant on firmware, understanding the vulnerabilities in this often overlooked layer of software is paramount. In this article, we delve into EMBA, a powerful open-source firmware security analysis tool.

Firmware 59

Firmware Engineering Software Cybersecurity 59

CSO Magazine

MARCH 1, 2023

A Unified Extensible Firmware Interface (UEFI) bootkit called BlackLotus is found to be capable of bypassing an essential platform security feature, UEFI Secure Boot , according to researchers from Slovakia-based cybersecurity firm ESET. Secure Boot is designed to ensure that the system boots only with trusted software and firmware.

Firmware 110

Firmware Malware Software Cybersecurity 110

CSO Magazine

JUNE 24, 2021

The over-the-internet firmware update and OS recovery feature present in 128 Dell computer models suffers from certificate validation and other flaws that could allow man-in-the-middle (MitM) attackers to compromise the devices at the firmware level and deploy malicious implants. To read this article in full, please click here

Firmware 111

Firmware CSO Internet Internet 111

Graham Cluley

NOVEMBER 10, 2022

Read more in my article on the Tripwire State of Security blog. Security researchers at ESET discovered flaws in 25 of its laptop models - including IdeaPads, Slims, and ThinkBooks - that could be used to disable the UEFI Secure Boot process.

Firmware 105

Firmware Manufacturing Malware 105

LRQA Nettitude Labs

NOVEMBER 1, 2023

Like many other RTOS based devices there is no ASLR implementation, which means once a vulnerability is discovered that can hijack control flow, any existing function in the firmware can be reliably jumped to using the function’s address.

Firmware 57

Firmware Authentication Software 57

CSO Magazine

NOVEMBER 10, 2021

Security researchers have found and reported 14 vulnerabilities in the BusyBox userspace tool that's used in millions of embedded devices running Linux-based firmware. To read this article in full, please click here While the flaws don't have high criticality, some of them do have the potential to result in remote code execution (RCE).

IoT 123

IoT Firmware Software 123

CSO Magazine

JUNE 2, 2022

The goal of this technique is to install malicious code deep inside computer firmware where it cannot be blocked by operating systems and third-party endpoint security products. Firmware implants are powerful and are usually used in high-value operations by state-sponsored hacker groups.

Firmware 100

Firmware Ransomware Engineering 100

CSO Magazine

JANUARY 14, 2022

All server manufacturers provide this functionality in firmware through a set of chips that run independent of the rest of the server and OS. To read this article in full, please click here

Manufacturing 123

Manufacturing Firmware Cybersecurity 123

CSO Magazine

FEBRUARY 2, 2021

“There were several instances where I had replaced my home routers because the vendor did not provide security fixes nor firmware updates,” Costin says, adding that current security practices are not keeping up with the changing landscape of working from home. To read this article in full, please click here (Insider Story)

IoT 105

IoT Firmware Internet Internet 105

CSO Magazine

FEBRUARY 13, 2023

However, researchers warn that these controllers should themselves be treated as perimeter devices and flaws in their firmware could enable deep lateral movement through the point-to-point and other non-routable connections they maintain to other low-level devices. To read this article in full, please click here

Firmware 116

Firmware Architecture Technology Risk 116

SecureList

JUNE 11, 2024

This article touches on biometric scanner security from the red team’s perspective and uses the example of a popular hybrid terminal model to demonstrate approaches to scanner analysis. The article will prove useful for both security researchers and architects. Yet, biometric scanners, as any other tech, have their weaknesses.

Firmware 130

Firmware Authentication Passwords Risk 130

CSO Magazine

JUNE 22, 2022

"Exploiting these vulnerabilities, attackers with network access to a target device could remotely execute code, change the logic, files or firmware of OT devices, bypass authentication, compromise credentials, cause denials of service or have a variety of operational impacts," researchers from security firm Forescout said in their new report.

Firmware 113

Firmware Authentication Technology 113

Security Boulevard

NOVEMBER 10, 2022

Update your Lenovo laptop’s firmware now! Read more in my article on the Tripwire State of Security blog. Read more in my article on the Tripwire State of Security blog. La entrada Update your Lenovo laptop’s firmware now! The post Update your Lenovo laptop’s firmware now! Leer más Graham Cluley.

Firmware 52

Firmware Malware Manufacturing 52

Hacker Combat

SEPTEMBER 22, 2022

A blog article from Claroty outlines the more critical vulnerabilities. The vendor has released firmware version 1.42.06162022 to address the problem. The firmware should be updated, and Dataprobe advises turning off the Simple Network Management Protocol (SNMP) if it isn’t being used.

Firmware 130

Firmware Firewall Internet Internet 130

CSO Magazine

MARCH 23, 2022

As a countermeasure, the manufacturer recommends firmware updates and configuration changes. According to Heise , attackers can use vulnerabilities in the firmware to remotely cause a buffer overflow in around 250 HP printer models. To read this article in full, please click here Gateway LLMNR protocol.

Firmware 86

Firmware Manufacturing 86

CSO Magazine

NOVEMBER 30, 2021

Security researchers have published details about two serious vulnerabilities that impact over 150 different HP multifunction printer models with FutureSmart firmware going back at least nine years. To read this article in full, please click here

Firmware 106

Firmware Risk 106

CSO Magazine

JULY 27, 2022

A sophisticated rootkit that's able to insert itself into the lowest levels of Windows computers -- the motherboard firmware -- has been making victims since 2020 after disappearing from the radar for around three years. The Unified Extensible Firmware Interface (UEFI) is the modern equivalent to the BIOS.

Firmware 81

Firmware Malware 81

CSO Magazine

AUGUST 12, 2022

Two teams of researchers have revealed vulnerabilities this week in Unified Extensible Firmware Interface (UEFI) implementations and bootloaders that could allow attackers to defeat the secure boot defenses of modern PCs and deploy highly persistent rootkits. To read this article in full, please click here

Firmware 82

Firmware Encryption Software 82

Daniel Miessler

MAY 14, 2020

I wrote an article recently on how to secure your home network in three different tiers of protection. Keep your firmware and software updated. In that piece I wanted to link to some safe internet practices—which some used to call Safe Hex—but I couldn’t find anything newer than nine years old.

Risk 345

Risk Passwords Password Management Accountability 345

CSO Magazine

FEBRUARY 1, 2021

The attacks are becoming more insidious, such as malware that modifies itself to infiltrate a system and hit a specific target, along with attacks directed at firmware. To read this article in full, please click here Needless to say, phishing attacks that rely on human error still are alive and well.

Firmware 92

Firmware Cryptocurrency Cyber threats Phishing 92

CSO Magazine

OCTOBER 4, 2022

These include a new Zero Trust Center of Excellence for validating a zero-trust architecture for commercial enterprises, as well as new security advisory/vulnerability management services and products designed to enhance cybersecurity across hardware, firmware, software, and object storage. To read this article in full, please click here

Cybersecurity 79

Cybersecurity Firmware Architecture Technology 79

Security Affairs

OCTOBER 1, 2023

Every week the best security articles from Security Affairs are free for you in your email box. A new round of the weekly SecurityAffairs newsletter arrived! Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Artificial Intelligence 127

Artificial Intelligence Firmware Data breaches Hacking 127

Security Affairs

JUNE 14, 2020

Every week the best security articles from Security Affairs free for you in your email box. A new round of the weekly SecurityAffairs newsletter arrived! Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

Firmware 106

Firmware Advertising Ransomware Hacking 106

Security Affairs

JULY 16, 2022

Every week the best security articles from Security Affairs for free in your email box. A new round of the weekly Security Affairs newsletter arrived!

Firmware 117

Firmware Ransomware DDOS Cryptocurrency 117

CSO Magazine

MARCH 10, 2023

The responsible malware, dubbed UNC4540, has been found to be stealing user credentials, providing shell access, and persisting through firmware upgrades. To read this article in full, please click here This is not a new vulnerability, so a patch was not published,” a Mandiant spokesperson said.

Firmware 79

Firmware Mobile Malware 79

Security Affairs

SEPTEMBER 26, 2019

With this article I wanna bring more light regarding: Which are the differences between C-U0007 & C-U0012 How to Build USBsamurai with a C-U0012 How to flash the C-U0012 with the LIGHTSPEED Firmware How to Flash the C-U0007 with the G700 firmware to achieve better performances and get the Air-Gap Bypass feature How to setup LOGITacker.

Firmware 82

Firmware Encryption Advertising InfoSec 82