Security Vulnerabilities Newsletter: Top News Rundown (November 2023)

21 Vulnerabilities Discovered in Crucial IT-OT Connective Routers

“Researchers have discovered 21 vulnerabilities in a popular brand of industrial router.

On Dec. 7 at Black Hat Europe, analysts from Forescout will reveal the bugs — including one of 9.6 “Critical” severity on the CVSS scale, and nine “High” severity — affecting a brand of operational technology (OT)/Internet of Things (IoT) routers especially common in the medical and manufacturing sectors.”

Binaré’s platform will check your IoT device, e.g. router, for a wide range of vulnerabilities and security issues and will give you a detailed report on them. Make a step towards security of your business already today: try our FREE Demo at?https://binare.io/ !

More information about the incident:? https://www.darkreading.com/vulnerabilities-threats/21-vulnerabilities-discovered-in-crucial-it-ot-connective-routers

#BinareInfographic: Binare's Firmware Analysis & Monitoring Platform vs. Car Maintenance

Discover and download more infographics?HERE

Dozens of Kernel Drivers Allow Attackers to Alter Firmware, Escalate Privileges

“VMware Carbon Black’s Threat Analysis Unit (TAU) has identified dozens of previously unknown vulnerable kernel drivers that could be exploited by attackers to alter firmware or escalate privileges.

It’s not uncommon for threat actors, including?cybercriminals?and?state-sponsored groups, to abuse kernel drivers in their operations. Such drivers can allow malicious hackers to manipulate system processes, maintain persistence on a system, and evade security products.”

Binaré is concerned about the security of IoT device your business is using. Come to our web page and check your device with our FREE Demo! The link for the web page:?https://binare.io/ .

More information about the incident:? https://www.securityweek.com/dozens-of-kernel-drivers-allow-attackers-to-alter-firmware-escalate-privileges/?web_view=true

#BinareCaseStudy: Binare’s Firmware Analysis & Monitoring Platform Brings Significant Value?For Medical Companies

Realized the urgent need to protect Medical IoT devices against cyberattacks? Find out how Binare can help Medical organizations to secure their IoT devices by downloading the full case study?HERE

North Korean Attack on CyberLink Impacted Devices Around the World, Microsoft Says

“Microsoft has uncovered a supply chain attack by North Korean hackers who attached a malicious file to a legitimate photo and video editing application installer.

In a?blog?on Wednesday, Microsoft Threat Intelligence said it attributed the activity to a group it calls Diamond Sleet — a hacking group within the North Korean government that focuses its efforts on espionage, data theft, financial gain, and network destruction, and targets media, IT services, and defense-related entities around the world.”

Binaré recommends smart device manufacturers as well as businesses that use smart devices to check them for vulnerabilities with Binaré’s automated IoT vulnerability management and firmware analysis platform to make the use of these devices safe.?Assess the security risk your IoT device possesses?for FREE with our Demo here:?https://binare.io/ .

More information about the incident:? https://therecord.media/north-korea-attack-cyberlink-microsoft?&web_view=true

#BinareVideo:?Binare x EUHubs4Data || IoT-SESOD project

Found the video insightful? Subscribe to Binare's Youtube channel?HERE

Ace Hardware Says 1,202 Devices Were Hit During Cyberattack

“Ace Hardware confirmed that a cyberattack is preventing local stores and customers from placing orders as the company works to restore 196 servers.

Ace Hardware is a hardware store retailer-owned cooperative that operates 17 distribution centers and 5,700 shops across the United States, China, Panama, and the UAE. The cooperative employs 12,500 people and has an annual revenue that surpasses $9 billion.”

Binaré?offers a security-testing platform?to prevent various businesses from cyberattacks. Binaré is concerned about security of the?IoT device your business is using. Come to our web page and?assess the security risk your IoT device possesses?with our FREE Demo! The link for the web page:?https://binare.io/ .

More information about the incident:? https://www.bleepingcomputer.com/news/security/ace-hardware-says-1-202-devices-were-hit-during-cyberattack/?&web_view=true

#BinareBlog: Top 5 Most Severe & Frequent Security Vulnerabilities Discovered by Binare Team in the EUHubs4Data IoT-SESOD Project

More articles for reading available in?Binare's blog & news section

Thousands of Routers and Cameras Vulnerable to New 0-Day Attacks by Hostile Botnet

“Miscreants are actively exploiting two new zero-day vulnerabilities to wrangle routers and video recorders into a hostile botnet used in distributed denial-of-service attacks, researchers from networking firm Akamai said Thursday.

Both of the vulnerabilities, which were previously unknown to their manufacturers and to the security research community at large, allow for the remote execution of malicious code when the affected devices use default administrative credentials, according to an?Akamai post . Unknown attackers have been exploiting the zero-days to compromise the devices so they can be infected with Mirai, a potent piece of open source software that makes routers, cameras, and other types of Internet of Things devices part of a botnet that’s capable of waging DDoSes of previously unimaginable sizes.”

Binaré’s platform will check your IoT device for a wide range of vulnerabilities and security issues and will give you a detailed report on them. Make a step towards security of your business already today: try our FREE Demo at?https://binare.io/ !

More information about the incident:? https://arstechnica.com/security/2023/11/thousands-of-routers-and-cameras-vulnerable-to-new-0-day-attacks-by-hostile-botnet/

Free icons courtesy of flaticon.com by authors: Freepik, Shuvo.Das, Talha Dogar, DinosoftLabs, madness.