Security News > 2019 > September > BMC vulnerabilities in Supermicro servers allow remote takeover, data exfiltration attacks
2019-09-03 11:10
A slew of vulnerabilities affecting the baseboard management controllers (BMCs) of Supermicro servers could be exploited by remote attackers to gain access to corporate networks, Eclypsium researchers have discovered. The flaws, collectively dubbed USBAnywhere, could allow attackers to connect to a server and connect a device to it remotely, over any network including the Internet, as if they had physical access to a server’s USB port. What are baseboard management controllers? BMCs are specialized microcontrollers … More → The post BMC vulnerabilities in Supermicro servers allow remote takeover, data exfiltration attacks appeared first on Help Net Security.
News URL
http://feedproxy.google.com/~r/HelpNetSecurity/~3/NLO9BU6Q4wA/
Related news
- GitHub Uncovers New ruby-saml Vulnerabilities Allowing Account Takeover Attacks (source)
- Over 400 IPs Exploiting Multiple SSRF Vulnerabilities in Coordinated Cyber Attack (source)
- New Critical AMI BMC Vulnerability Enables Remote Server Takeover and Bricking (source)
- Ongoing Cyber Attacks Exploit Critical Vulnerabilities in Cisco Smart Licensing Utility (source)
- Ingress-nginx vulnerabilities can lead to Kubernetes cluster takeover (source)
- Open-source malware doubles, data exfiltration attacks dominate (source)
- New BPFDoor Controller Enables Stealthy Lateral Movement in Linux Server Attacks (source)
- Hitachi Vantara takes servers offline after Akira ransomware attack (source)
- Airplay-enabled devices open to attack via “AirBorne” vulnerabilities (source)