December 13, 2024 at 11:49AM Germany’s Federal Office for Information Security (BSI) has successfully disrupted the BadBox malware operation, which was pre-installed in over 30,000 sold Android IoT devices in the country. **Meeting Takeaways:** 1. **Operation Disruption**: Germany’s Federal Office for Information Security (BSI) successfully disrupted the BadBox malware operation. 2. **Affected Devices**: The malware … Read more
December 13, 2024 at 07:33AM Iran-affiliated hackers have developed IOCONTROL, a custom malware targeting IoT and operational technology systems in Israel and the U.S. It can compromise various devices like cameras and PLCs, enabling attackers to shut down services and steal data. The malware functions via MQTT and employs advanced evasion tactics. **Meeting Takeaways – … Read more
December 12, 2024 at 03:48PM Iranian threat actors are deploying a new malware, IOCONTROL, to attack IoT devices and critical infrastructure systems in Israel and the U.S. It targets various devices, including routers and fuel management systems, potentially causing disruptions. Linked to the CyberAv3ngers group, it is difficult to detect with current antivirus tools. ### … Read more
December 5, 2024 at 10:28AM The rise of IoT and OT devices in critical sectors introduces unique security challenges due to their diversity, limited patching options, operational disruptions, inadequate security protocols, and limited visibility. Tailored strategies, such as risk-based approaches, strict access controls, and specialized monitoring tools, are essential for effective vulnerability management in these … Read more
December 5, 2024 at 10:27AM Cybersecurity researchers revealed a proof-of-concept exploit for a critical vulnerability (CVE-2024-41713) in Mitel MiCollab, enabling unauthorized file access via a path traversal attack. The flaw has been patched in versions 9.8 SP2 and later. Additionally, several vulnerabilities were found in Lorex security cameras, allowing remote code execution. ### Meeting Takeaways … Read more
December 3, 2024 at 01:48PM Trend Micro Research reports a shift in Gafgyt malware targeting misconfigured Docker Remote API servers, previously focusing on IoT devices. Attackers deploy malware via Docker containers, enabling DDoS attacks. Recommendations for securing servers include strong access controls, regular monitoring, and educating personnel on best practices. ### Meeting Takeaways **Key Report … Read more
December 3, 2024 at 04:49AM Trend Micro Research reports that Gafgyt malware is now targeting misconfigured Docker Remote API servers, a shift from its traditional focus on IoT devices. This allows attackers to deploy DDoS attacks. Recommendations include strengthening access controls, monitoring activities, and ensuring adherence to container security best practices. ### Meeting Takeaways on … Read more
November 28, 2024 at 12:27PM Advantech EKI wireless access points have 20 disclosed vulnerabilities, including six critical ones that allow unauthenticated remote code execution and potential backdoor access. Recent firmware updates address these issues, but attackers can exploit them via physical proximity and rogue access points. Vulnerabilities could lead to significant network breaches and data … Read more
November 27, 2024 at 09:08AM A hacker known as “Matrix” has created a DDoS botnet using publicly available malware tools, targeting IoT devices and enterprise servers. Operating on Telegram, Matrix offers various DDoS attack plans. Researchers emphasize the need for improved security practices to address vulnerabilities being exploited, particularly default credentials and unpatched systems. ### … Read more
November 27, 2024 at 01:04AM A threat actor named Matrix has initiated a large-scale DDoS campaign by exploiting vulnerabilities in IoT devices, primarily targeting IP addresses in China and Japan. This operation utilizes publicly available scripts, promotes a DDoS-for-hire service via Telegram, and highlights the need for improved security practices to mitigate such attacks. **Meeting … Read more