Security News

Critical OpenWrt Vulnerability Exposes Devices to Malicious Firmware Injection

2024-12-13 16:48

A security flaw has been disclosed in OpenWrt's Attended Sysupgrade (ASU) feature that, if successfully exploited, could have been abused to distribute malicious firmware packages. The...

#critical #firmware #openwrt #vulnerability #CVE-2024-54143

OpenWrt Sysupgrade flaw let hackers push malicious firmware images

2024-12-09 22:33

A flaw in OpenWrt's Attended Sysupgrade feature used to build custom, on-demand firmware images could have allowed for the distribution of malicious firmware packages. [...]

#firmware #hacker #openwrt

OpenWrt orders router firmware updates after supply chain attack scare

2024-12-09 14:04

A couple of bugs lead to a potentially bad time OpenWrt users should upgrade their images to the same version to protect themselves from a possible supply chain attack reported to the open source...

#attack #firmware #openwrt #router #supplychain #update

TPM 2.0: The new standard for secure firmware

2024-12-09 07:38

Connected devices are better protected from cyberattacks and less likely to be compromised by errors thanks to the new TPM 2.0 specification from the Trusted Computing Group (TCG). Manufacturers...

#firmware

QNAP pulls buggy QTS firmware causing widespread NAS issues

2024-11-22 20:49

QNAP has pulled a recently released firmware update after widespread customer reports that it's breaking connectivity and, in some cases, locking users out of their devices. [...]

#firmware #NAS #qnap

Flipper Zero releases Firmware 1.0 after three years of development

2024-09-10 12:00

After three years of development, the Flipper Zero team has announced the release of the first major firmware version for the portable, customizable digital hacking device. [...]

#development #firmware

Google says replacing C/C++ in firmware with Rust is easy

2024-09-06 21:44

Not so much when trying to convert coding veterans Google recently rewrote the firmware for protected virtual machines in its Android Virtualization Framework using the Rust programming language...

#firmware #google

Damn Vulnerable UEFI: Simulate real-world firmware attacks

2024-09-02 04:30

Damn Vulnerable UEFI (DVUEFI) is an open-source exploitation toolkit and learning platform for unveiling and fixing UEFI firmware vulnerabilities. Simulate real-world firmware attacks DVUEFI was...

#attack #firmware #uefi

OpenWrt dominates, but vulnerabilities persist in OT/IoT router firmware

2024-08-07 06:14

The study uncovered that OT and IoT cellular routers and those used in small offices and homes contain outdated software components associated with known vulnerabilities. The research showed that widely used OT/IoT router firmware images have, on average, 20 exploitable n-day vulnerabilities affecting the kernel, leading to increasing security risks.

#firmware #IOT #openwrt #OT #router #vulnerabilities

Firmware update hides Bluetooth fingerprints

2024-07-16 04:00

A smartphone's unique Bluetooth fingerprint could be used to track the device's user-until now. A team of researchers has developed a simple firmware update that can completely hide the Bluetooth fingerprint, eliminating the vulnerability.

#bluetooth #fingerprint #firmware #update

Security News {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Security News"}]}

Security News