Security Vulnerabilities Newsletter: Top News Rundown (Weeks 14/18-2024)

91,000 Smart LG TV Devices Vulnerable to Remote Takeover

“Cybersecurity researchers from Bitdefender discovered critical vulnerabilities in LG TVs running webOS versions 4 through 7. These vulnerabilities could allow attackers to gain complete control over the TV, steal data, or install malware.

The vulnerabilities were identified by Bitdefender as part of their research into the security of popular IoT devices. They found that attackers could bypass authentication mechanisms and create new user accounts with elevated privileges. This would allow them to take full control of the TV, including injecting malicious code, stealing data, or moving laterally across the smart home network.”

Binaré’s platform will check your IoT device, e.g. smart TV, for a wide range of vulnerabilities and security issues and will give you a detailed report on them. Make a step towards security of your business already today: try our FREE Demo at?https://binare.io/!

More information about the incident:? https://www.hackread.com/smart-lg-tv-devices-vulnerable-remote-take-over/?web_view=true

#BinareInfographic: The Strong & Urgent Need to Perform Binary (IoT Firmware) Security Analysis

Discover and download more infographics HERE

Over 92,000 Internet-Facing D-Link NAS Devices Can Be Easily Hacked

"A researcher who goes online with the moniker ‘Netsecfish’ disclosed a new arbitrary command injection and hardcoded backdoor flaw, tracked as , tracked as?CVE-2024-3273, that impacts multiple end-of-life D-Link Network Attached Storage (NAS) device models.

The flaw affects multiple D-Link NAS devices, including models DNS-340L, DNS-320L, DNS-327L, and DNS-325.”

Binaré’s platform will check your IoT device, e.g. NAS device, for a wide range of vulnerabilities and security issues and will give you a detailed report on them. Make a step towards security of your business already today: try our FREE Demo at?https://binare.io/!

More information about the incident: https://securityaffairs.com/161549/hacking/d-link-nas-flaw.html?web_view=true?

#BinareCaseStudy: Binare’s Firmware Analysis & Monitoring Platform Brings Significant Value For Healthcare Organizations

Realized the urgent need to protect Medical IoT devices against cyberattacks? Find out how Binare can help healthcare organizations to secure their IoT devices by downloading the full case study HERE

Chinese, Russian Espionage Campaigns Increasingly Targeting Edge Devices

“Chinese and Russian hackers have turned their focus to edge devices — like VPN appliances, firewalls, routers and Internet of Things (IoT) tools — amid a startling increase in espionage attacks, according to Google security firm Mandiant.?

The company published the findings as part of its?annual report?on cyber investigations Mandiant was involved in last year.”

Binaré’s platform will check your IoT device, e.g. edge device, for a wide range of vulnerabilities and security issues and will give you a detailed report on them. Make a step towards security of your business already today: try our FREE Demo at?https://binare.io/!

More information about the incident:? https://therecord.media/chinese-russian-hackers-edge-devices?&web_view=true

#BinareVideo:?Binares Firmware Insights || Critical vulnerability in Apache Log4j library || CVE-2021-44228

Found the video insightful? Subscribe to Binare's Youtube channel HERE

Hackers Offering Admin Access to 3000 Fortinet SSL-VPN

“Hackers are now offering administrative access to over 3000 Fortinet SSL-VPN devices.?

This breach poses a significant threat to the security of numerous organizations relying on these devices for secure remote access.”

Binaré?offers a security-testing platform?to prevent various businesses from cyberattacks. Binaré is concerned about security of the?IoT device your business is using. Come to our web page and?assess the security risk your IoT device possesses?with our FREE Demo! The link for the web page:?https://binare.io/.

More information about the incident:? https://cybersecuritynews.com/hackers-offering-admin-access/

#BinareNews: Binare.io Featured in the April’s Edition of ECSO Cybersecurity Awareness Calendar 2024!

The topic of the month has been “Cybersecurity Solutions to Secure SME Businesses” &?Binare.io?is glad to present its IoT/IIoT vulnerability management tool that monitors continuously your business cyber health on page 8

More news for reading available in Binare's blog & news section

Linux Kernel Flaw Let Attackers Gain Full Root Access: PoC Published

“Security researchers have uncovered a critical vulnerability in the Linux kernel’s?io_uring?subsystem, which could allow attackers to gain full root access to affected systems.?

The flaw, tracked as CVE-2024-0582, was found to be particularly exploitable in?Ubuntu?distributions due to a delay in patching despite the vulnerability being addressed in the stable kernel release in December 2023.”

Binaré’s platform will check your IoT device for a wide range of vulnerabilities and security issues and will give you a detailed report on them. Make a step towards security of your business already today: try our FREE Demo at?https://binare.io/!

More information about the incident: https://cybersecuritynews.com/linux-kernel-flaw/#google_vignette?

Free icons courtesy of flaticon.com by authors: Freepik.