.webp)
Cyber Security News
Linksys EA7500 Routers Flaw Let Attackers Execute Remote Code
A severe security vulnerability has been identified in the Linksys EA7500 routers, affecting the model's firmware across all versions.
Ars Technica
Hackers actively exploit critical remote takeover vulnerabilities in D-Link devices
D-Link won't be patching vulnerable NAS devices because they're no longer supported.
Ars Technica
Thousands of Phones and routers swept into proxy service, unbeknownst to users
Two new reports show criminals may be using your device to cover their online tracks.
The DFIR Report
SQL Brute Force leads to Bluesky Ransomware - The DFIR Report
In December 2022, we observed an intrusion on a public-facing MSSQL Server, which resulted in BlueSky ransomware. First discovered in June 2022, BlueSky ransomware has code links to Conti and … Read More
Bleeping Computer
QNAP takes down server behind widespread brute-force attacks
QNAP took down a malicious server used in widespread brute-force attacks targeting Internet-exposed NAS (network-attached storage) devices with weak passwords.
Infosecurity News
Experian Pays $650,000 to Settle Spam Claims
Credit reporting firm accused of sending millions of unwanted emails
Security Affairs
Experts released PoC exploit for Ubiquiti EdgeRouter flaw
A Proof-of-Concept (PoC) exploit for the CVE-2023-31998 vulnerability in the Ubiquiti EdgeRouter has been publicly released. The CVE-2023-31998 flaw (CVSS v3 5.9) is a heap overflow issue impacting Ubiquiti EdgeRouters and Aircubes, an attacker can exploit it to potentially execute arbitrary code and interrupt UPnP service to a vulnerable device. The flaw resides in the […]
SecurityWeek
PoC Exploit Published for Recent Ubiquiti EdgeRouter Vulnerability
PoC exploit has been published for a recently patched Ubiquiti EdgeRouter vulnerability leading to arbitrary code execution.
Security Affairs
CISA adds Samsung and D-link bugs to its Known Exploited Vulnerabilities catalog
US CISA added actively exploited Samsung and D-Link vulnerabilities to its Known Exploited Vulnerabilities catalog. US Cybersecurity and Infrastructure Security Agency (CISA) added six Samsung and two D-Link vulnerabilities to its Known Exploited Vulnerabilities Catalog. Below is the list of flaws added to the catalog: The CVE-2019-17621 flaw is a remote command execution flaw that resides in […]
Naked Security
Belkin Wemo Smart Plug V2 – the buffer overflow that won’t be patched
Yes, it’s a buffer overflow bug. No, it’s not going get fixed.
Cyber Security News
100 Best Free Red Team Tools - 2023
Free Red Team Tools: We are bringing here a collection of open-source and commercial Tools that aid in red team operations.
Bleeping Computer
Over 29,000 QNAP devices vulnerable to code injection attacks
Tens of thousands of QNAP network-attached storage (NAS) devices exposed online are waiting to be patched against a critical security flaw addressed by the Taiwanese company on Monday.
Bleeping Computer
Over 29,000 QNAP devices unpatched against new critical flaw
Tens of thousands of QNAP network-attached storage (NAS) devices exposed online are waiting to be patched against a critical security flaw addressed by the Taiwanese company on Monday.
Naked Security
S3 Ep100: Browser-in-the-Browser – how to spot an attack [Audio + Text]
Latest episode – listen now! Cosmic rockets, zero-days, spotting cybercrooks, and unlocking the DEADBOLT…
Naked Security
DEADBOLT ransomware rears its head again, attacks QNAP devices
NAS devices make it easy for anyone to add high-capacity file servers to their network. Guess why cybercrooks love NAS devices too…
Bleeping Computer
QNAP alerts NAS customers of new DeadBolt ransomware attacks
Taiwan-based network-attached storage (NAS) maker QNAP warned customers on Thursday to secure their devices against attacks pushing DeadBolt ransomware payloads.
Security Affairs
Security Affairs newsletter Round 362 by Pierluigi Paganini
A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs free for you in your email box. If you want to also receive for free the newsletter with the international press subscribe here. T-Mobile confirms Lapsus$ had access its systems Are you using Java 15/16/17 or 18 […]
Naked Security
QNAP warns of new bugs in its Network Attached Storage devices
Here’s what you need to know – plus some sensible advice for all the devices on your home or small biz network!
Cyber Security News
QNAP Urged customers to disable UPnP Port on their Routers
In order to forward the ports that are in use from one device to another device on a network Universal Plug and Play (UPnP) Port forwarding was introduced. This feature automatically forwards the ports from on device to another with only one change in setting. No additional configuration was required.
Security Affairs
QNAP users are recommended to disable UPnP port forwarding on routers
QNAP urges customers to disable Universal Plug and Play (UPnP) port forwarding on their routers to secure their NAS devices. Taiwanese vendor QNAP urges customers to disable Universal Plug and Play (UPnP) port forwarding on their routers to protect their network-attached storage (NAS) devices from attacks. UPnP is an insecure protocol, it uses network UDP […]
Bleeping Computer
QNAP urges customers to disable UPnP port forwarding on routers
Taiwanese hardware vendor QNAP urged customers on Monday to disable Universal Plug and Play (UPnP) port forwarding on their routers to prevent exposing their network-attached storage (NAS) devices to attacks from the Internet.
Naked Security
Serious Security: DEADBOLT – the ransomware that goes straight for your backups
Some tips on how to keep your network safe – even (or perhaps especially!) if you think you’re safe already.
Bleeping Computer
CISA adds 15 vulnerabilities to list of flaws exploited in attacks
The U.S. Cybersecurity & Infrastructure Security Agency (CISA) has added fifteen additional flaws to its list of actively exploited vulnerabilities known to be used in cyberattacks.
Security Affairs
Dirty Pipe Linux flaw impacts most QNAP NAS devices
Taiwanese vendor QNAP warns most of its NAS devices are impacted by high severity Linux vulnerability dubbed ‘Dirty Pipe.’ Taiwanese hardware vendor QNAP warns most of its Network Attached Storage (NAS) devices are impacted by the recently discovered Linux vulnerability ‘Dirty Pipe.’ An attacker with local access can exploit the high-severity vulnerability Dirty Pipe to […]
Bleeping Computer
QNAP warns severe Linux bug affects most of its NAS devices
Taiwanese hardware vendor QNAP warns most of its Network Attached Storage (NAS) devices are impacted by a high severity Linux vulnerability dubbed 'Dirty Pipe' that allows attackers with local access to gain root privileges.
Security Affairs
New Emotet botnet is rapidly growing, with +130K unique bots spread across 179 countries
A few months after its return the Emotet botnet has already infected over 130,000 unique bots spread across 179 countries. The Emotet botnet continues to grow and has infected approximately 130,000 hosts since its resurrection in November 2021. Early 2021, law enforcement and judicial authorities worldwide conducted a joint operation, named Operation Ladybird, which disrupted the EMOTET […]
Bleeping Computer
QNAP extends critical updates for some unsupported NAS devices
QNAP has extended support and will keep issuing security updates for some end-of-life (EOL) network-attached storage (NAS) devices until October 2022.
The Hacker News
IoT/connected Device Discovery and Security Auditing in Corporate Networks
IoT/connected Device Discovery and Security Auditing in Corporate Networks
Bleeping Computer
277,000 routers exposed to Eternal Silence attacks via UPnP
A malicious campaign known as 'Eternal Silence' is abusing Universal Plug and Play (UPnP) turns your router into a proxy server used to launch malicious attacks while hiding the location of the threat actors.
Bleeping Computer
QNAP force-installs update after DeadBolt ransomware hits 3,600 devices
QNAP force-updated customer's Network Attached Storage (NAS) devices with firmware containing the latest security updates to protect against the DeadBolt ransomware, which has already encrypted over 3,600 devices.
The Record
Deadbolt ransomware hits more than 3,600 QNAP NAS devices
More than 3,600 network-attached storage (NAS) devices from Taiwanese company QNAP have been infected and had their data encrypted by a new strain of ransomware named Deadbolt.
ZDNet
QNAP warns NAS users of DeadBolt ransomware, urges customers to update | ZDNet
QNAP released a warning this week about a ransomware strain targeting all NAS instances exposed to the internet.
Bleeping Computer
QNAP warns of new DeadBolt ransomware encrypting NAS devices
QNAP is warning customers again to secure their Internet-exposed Network Attached Storage (NAS) devices to defend against ongoing and widespread attacks targeting their data with the new DeadBolt ransomware strain.
Bleeping Computer
Qlocker ransomware returns to target QNAP NAS devices worldwide
Threat actors behind the Qlocker ransomware are once again targeting Internet-exposed QNAP Network Attached Storage (NAS) devices worldwide.
ThreatPost
QNAP: Get NAS Devices Off the Internet Now
There are active ransomware and brute-force attacks being launched against internet-exposed, network-attached storage devices, the device maker warned.
Bleeping Computer
QNAP warns of ransomware targeting Internet-exposed NAS devices
QNAP has warned customers today to secure Internet-exposed network-attached storage (NAS) devices immediately from ongoing ransomware and brute-force attacks.
Bleeping Computer
Dark Mirai botnet targeting RCE on popular TP-Link router
The botnet known as Dark Mirai (aka MANGA) has been observed exploiting a new vulnerability on the TP-Link TL-WR840N EU V5, a popular inexpensive home router released in 2017.
Bleeping Computer
Cisco won’t fix zero-day RCE vulnerability in end-of-life VPN routers
In a security advisory published on Wednesday, Cisco said that a critical vulnerability in Universal Plug-and-Play (UPnP) service of multiple small business VPN routers will not be patched because the devices have reached end-of-life.
Bleeping Computer
WD My Book NAS devices are being remotely wiped clean worldwide
Western Digital My Book Live NAS owners worldwide found that their devices have been mysteriously factory reset and all of their files deleted.
Bleeping Computer
QNAP warns of AgeLocker ransomware attacks on NAS devices
QNAP customers are once again urged to secure their Network Attached Storage (NAS) devices to defend against Agelocker ransomware attacks targeting their data.