Apple Patches AirPods Bluetooth Vulnerability That Could Allow Eavesdropping

June 26, 2024 at 06:57AM Apple has released a firmware update addressing an authentication issue affecting various headphone models, allowing potential unauthorized access. The vulnerability could enable eavesdropping on private conversations. Additionally, a logic flaw in visionOS has been patched to prevent a denial-of-service attack. This comes after the rollout of updates to address 21 … Read more

Phoenix UEFI vulnerability impacts hundreds of Intel PC models

June 20, 2024 at 05:32PM A new vulnerability, CVE-2024-0762, in Phoenix SecureCore UEFI firmware impacts devices running various Intel CPUs. Dubbed ‘UEFICANHAZBUFFEROVERFLOW,’ the flaw, discovered by Eclypsium, affects the firmware’s TPM configuration, posing a code execution risk. Lenovo has released new firmware, with the potential for hundreds of models’ impacted. Secure Boot in UEFI firmware … Read more

Researchers Uncover UEFI Vulnerability Affecting Multiple Intel CPUs

June 20, 2024 at 10:58AM Cybersecurity researchers have disclosed a now-patched security flaw in Phoenix SecureCore UEFI firmware affecting multiple Intel Core processor families. Tracked as CVE-2024-0762 with a CVSS score of 7.5, the “UEFIcanhazbufferoverflow” vulnerability allowed a local attacker to execute malicious code within the firmware, impacting devices using Phoenix SecureCore firmware on select … Read more

Hundreds of PC, Server Models Possibly Affected by Serious Phoenix UEFI Vulnerability

June 20, 2024 at 09:33AM A high-severity vulnerability, CVE-2024-0762 (dubbed UEFIcanhazbufferoverflow), was found in Phoenix Technologies’ SecureCore UEFI firmware, affecting multiple Intel processors. Eclypsium discovered the security hole, warning of potential escalation of privileges and code execution. Phoenix has addressed the issue, with device manufacturers deploying patches. Lenovo is also releasing fixes for affected computers. … Read more

ZKTeco Biometric System Found Vulnerable to 24 Critical Security Flaws

June 14, 2024 at 04:19AM A security analysis of ZKTeco’s hybrid biometric access system revealed 24 critical flaws, including SQL injections, buffer overflows, and file manipulations. These vulnerabilities enable attackers to bypass authentication, steal biometric data, execute arbitrary commands, and implant backdoors. Mitigation measures include network segmentation, strong passwords, and minimizing QR code use. Source: … Read more

BlackTech Targets Tech, Research, and Gov Sectors New ‘Deuterbear’ Tool

April 19, 2024 at 10:48AM BlackTech has targeted technology, research, and government sectors in the Asia-Pacific region with cyber attacks. They have updated their modular backdoor called Waterbear and introduced its enhanced successor, Deuterbear. Trend Micro researchers describe the complexity of Waterbear and its evasive techniques. Earth Hundun, the threat actor, has been active since … Read more

Multiple botnets exploiting one-year-old TP-Link flaw to hack routers

April 17, 2024 at 09:09AM Six botnet malware operations target TP-Link Archer AX21 routers vulnerable to CVE-2023-1389, a high-severity command injection flaw. Discovered in January 2023, it was fixed by TP-Link in March 2023. Mirai variants, “Condi,” and botnets like Moobot and Miori exploit the vulnerability for DDoS attacks. Users are urged to update firmware … Read more

Intel and Lenovo BMCs Contain Unpatched Lighttpd Server Flaw

April 15, 2024 at 01:03PM A security flaw in the Lighttpd web server used in BMCs, unpatched by Intel and Lenovo, poses a risk of exfiltrating sensitive data. The absence of prompt security information prevents proper handling of the fixes down firmware and software supply chains. Out-of-bounds read vulnerabilities in susceptible versions of Lighttpd remain … Read more

Intel and Lenovo servers impacted by 6-year-old BMC flaw

April 11, 2024 at 12:52PM A 6-year-old vulnerability in Lighttpd web server used in Baseboard Management Controllers, overlooked by vendors like Intel and Lenovo, could lead to memory exfiltration, bypassing protection mechanisms. Binarly discovered a heap out-of-bounds read vulnerability and vendors missed the fix, leading to a massive number of vulnerable devices, with impacted models … Read more

New XZ backdoor scanner detects implant in any Linux binary

April 2, 2024 at 10:38AM Binarly, a firmware security firm, has released a free online scanner to detect Linux executables affected by the XZ Utils supply chain attack, identified as CVE-2024-3094. The attack was discovered by a Microsoft engineer and the scanner aims to address this issue. It employs static analysis of binaries to identify … Read more