Cyber Attacks, Firmware and VPN - Cyber Security Informer

Sophos details five years of China-linked threat actors’ activity targeting network devices worldwide

Security Affairs

NOVEMBER 2, 2024

Sophos, with the help of other cybersecurity firms, government, and law enforcement agencies investigated the cyber attacks and attributed them multiple China-linked APT groups, such as Volt Typhoon , APT31 and APT41 / Winnti. ” concludes the report.

Firmware

Firmware Government Firewall Malware

Danish critical infrastructure hit by the largest cyber attack in Denmark’s history

Security Affairs

NOVEMBER 14, 2023

Danish critical infrastructure was hit by the largest cyber attack on record that hit the country, according to Denmark’s SektorCERT. The vulnerability is an improper error message handling in Zyxel ZyWALL/USG series firmware versions 4.60 through 4.73, VPN series firmware versions 4.60 through 5.35.

Cyber Attacks

Cyber Attacks Firmware Firewall VPN

Attacks against Denmark ‘s energy sector were not carried out by Russia-linked APT

Security Affairs

JANUARY 14, 2024

Forescout experts questioned the attribution of cyber attacks that targeted the energy sector in Denmark in 2023 to the Russia-linked Sandworm. Forescout experts shared findings from their analysis of the cyber attacks that targeted the energy sector in Denmark in 2023, attributing them to the Russia-linked Sandworm.

Firewall

Firewall Firmware Cyber Attacks VPN

Chinese national charged for hacking thousands of Sophos firewalls

Security Affairs

DECEMBER 11, 2024

A list of the user IDs permitted to use the firewall for SSL VPN and accounts that were permitted to use a clientless VPN connection. Below is the attack scenario described by Sophos: Sophos pushed a hotfix to the firewalls after the discovery of the attacks. Passwords were not stored in plain text.

Firewall

Firewall Hacking Malware Passwords

WizCase Report: Vulnerabilities found in WD My Book, NetGear Stora, SeaGate Home, Medion LifeCloud NAS

Security Affairs

OCTOBER 20, 2018

CVE-2018-18472 – XXE and Unauthenticated Remote Command Execution in Axentra Hipserv NAS firmware. . It’s used in different devices from different vendors, the affected devices sharing the firmware are: Netgear Stora. The company provides a firmware with a web interface that mainly uses PHP as a serverside language.

Firmware

Firmware IoT VPN Authentication

Security Affairs newsletter Round 309

Security Affairs

APRIL 11, 2021

Clop Ransomware operators plunder US universities Malware attack on Applus blocked vehicle inspections in some US states 2,5M+ users can check whether their data were exposed in Facebook data leak 33.4%

Cyber Attacks

Cyber Attacks Firmware Malware Hacking

Security Affairs newsletter Round 175 – News of the week

Security Affairs

AUGUST 12, 2018

. · Tech Support Scams improved with adoption of Call Optimization Service. · Dept.

Advertising

Advertising DNS Firmware Surveillance

The State of Endpoint Security Management in 2022: It’s Worse Than You Suspect

CyberSecurity Insiders

NOVEMBER 1, 2022

Back then, endpoint security focused on computers, which meant the installation of antivirus, malware protection, firewall, and (sometimes) VPN in every computer. These ignored, forgotten, and un-updated (OS/firmware) connected devices can become vulnerabilities exploited by cybercriminals to gain access to networks and cloud resources.

IoT

IoT Antivirus Threat Detection Cyber threats

IT threat evolution Q1 2024

SecureList

JUNE 3, 2024

The attackers were able to bypass this hardware-based security protection using another hardware feature of Apple-designed SoCs (System on a Chip): they did this by writing the data, destination address and data hash to unknown hardware registers of the chip that are not used by the firmware.

Banking

Banking Malware Computers and Electronics Mobile

GUEST ESSAY: The story behind how DataTribe is helping to seed ‘Cybersecurity Valley’ in Maryland

The Last Watchdog

JUNE 4, 2019

ReFirm Labs, meanwhile, has developed a radically new approach to securing heretofore insecure connected devices through firmware validation. BlueRidge AI integrates the Internet of Things, machine learning and predictive analytics to enable manufacturers to transform their operations into globally competitive operations.

Cybersecurity

Cybersecurity Computers and Electronics Technology Marketing

10 Network Security Threats Everyone Should Know

eSecurity Planet

MARCH 16, 2023

VPN Vulnerabilities Although VPNs create a private tunnel for organizations’ network communications, they can still be breached. One particular vulnerability is third-party VPN access, where businesses give partners or contractors access to their applications using a VPN.

Network Security

Network Security Firewall Internet Internet

What is a Managed Security Service Provider? MSSPs Explained

eSecurity Planet

AUGUST 22, 2023

As cyber attacks continue to increase in number and sophistication, the need for MSSPs grows. Employee training and education services help to prepare employees for potential types of attacks, how to avoid becoming victims, and how to properly report incidents to security teams. assets (endpoints, servers, IoT, routers, etc.),

Firewall

Firewall Telecommunications Penetration Testing Cybersecurity

Reassessing cyberwarfare. Lessons learned in 2022

SecureList

DECEMBER 14, 2022

While the impact of these destructive cyber-attacks paled in comparison to the effects of the kinetic attacks taking place at the same time, it should be noted that this capability could in theory be directed against any country outside of the context of an armed conflict and under the pretense of traditional cybercrime activity.

DDOS

DDOS Ransomware Government Energy and Utilities

Security Affairs newsletter Round 252

Security Affairs

FEBRUARY 23, 2020

Fox Kitten Campaign – Iranian hackers exploit 1-day VPN flaws in attacks. Unsigned Firmware running on peripherals could expose Windows, Linux systems to hack. DRBControl cyber-espionage group targets gambling, betting companies. UK, US and its allies blame Russias GRU for 2019 cyber-attacks on Georgia.

Artificial Intelligence

Artificial Intelligence eCommerce Hacking Advertising

Cyber Security Informer

Sophos details five years of China-linked threat actors’ activity targeting network devices worldwide

Danish critical infrastructure hit by the largest cyber attack in Denmark’s history

Trending Sources

Attacks against Denmark ‘s energy sector were not carried out by Russia-linked APT

Chinese national charged for hacking thousands of Sophos firewalls

WizCase Report: Vulnerabilities found in WD My Book, NetGear Stora, SeaGate Home, Medion LifeCloud NAS

Security Affairs newsletter Round 309

Security Affairs newsletter Round 175 – News of the week

The State of Endpoint Security Management in 2022: It’s Worse Than You Suspect

IT threat evolution Q1 2024

GUEST ESSAY: The story behind how DataTribe is helping to seed ‘Cybersecurity Valley’ in Maryland

10 Network Security Threats Everyone Should Know

What is a Managed Security Service Provider? MSSPs Explained

Reassessing cyberwarfare. Lessons learned in 2022

Security Affairs newsletter Round 252

Stay Connected