New Linux-Targeting UEFI Bootkit Discovered: BootKitty Exploits LogoFAIL Vulnerability
Security researchers have identified BootKitty, one of the first UEFI bootkits specifically designed to compromise Linux systems by exploiting firmware vulnerabilities. The sophisticated malware can persist after OS reinstallation and demonstrates concerning capabilities in bypassing kernel security measures.
Researchers Crack SonicWall Firmware Encryption, Enabling Deep Security Analysis
Security researchers at Bishop Fox achieve breakthrough in decrypting SonicWall firewall firmware, providing unprecedented access to analyze these crucial network security devices. The discovery enables thorough security auditing of widely-deployed SonicWall products and improved detection capabilities for internet-exposed devices.
Critical Vulnerabilities in WordPress Anti-Spam Plugin Put 200,000 Sites at Risk
Two severe security flaws discovered in the Anti-Spam by CleanTalk WordPress plugin could allow attackers to gain unauthorized control of over 200,000 websites. The developer has released patches while security researchers implement protective measures for affected installations.
Critical VPN Client Vulnerabilities Allow Attackers to Deploy Malware Through Fake Servers
Security researchers have discovered severe flaws in Palo Alto Networks' GlobalProtect and SonicWall's NetExtender VPN clients that enable attackers to execute malicious code through rogue VPN servers. The vulnerabilities could allow credential theft and system compromise through unauthorized software updates with elevated privileges.
D-Link Refuses Security Patches for 60,000 Vulnerable DSL Modems
D-Link announces it won't patch critical security vulnerabilities affecting 60,000 DSL6740C modems still in use, leaving users exposed to potential cyberattacks. Multiple severe flaws were discovered, including unauthorized password changes and remote code execution vulnerabilities.
Hackers Exploit Avast Driver Vulnerability to Disable Antivirus Protection
Security researchers have discovered malware that hijacks Avast's anti-rootkit driver to terminate antivirus processes on infected systems. The sophisticated attack, active since 2021, targets 142 security products and uses a bring-your-own-vulnerable-driver technique to compromise system defenses.
Avast Anti-Rootkit Driver Exploited by Hackers to Disable Windows Security
Cybercriminals have discovered a way to abuse Avast's legitimate anti-rootkit driver to bypass Windows security protections and terminate antivirus processes. The 'Bring Your Own Vulnerable Driver' technique allows attackers to gain elevated system privileges by exploiting the trusted, signed driver.
D-Link Leaves Critical VPN Router Vulnerability Unpatched, Offers Hardware Discount Instead
D-Link announces it won't patch a severe remote code execution vulnerability affecting multiple older VPN router models, citing end-of-life status. The company offers affected customers a 20% discount on newer hardware while security researchers warn of potential network risks.
Global Alert: Over 145,000 Industrial Control Systems Found Vulnerable to Cyber Attacks
A comprehensive study reveals more than 145,000 Industrial Control Systems exposed online across 175 countries, with the US accounting for one-third of all exposures. The research highlights critical security vulnerabilities in water, agricultural, and industrial infrastructure systems worldwide.
Massive Security Breach: Over 2,000 Palo Alto Networks Firewalls Compromised in Global Attack
Security researchers have uncovered 'Operation Lunar Peek', a widespread attack campaign targeting Palo Alto Networks devices worldwide. The attacks exploit critical vulnerabilities in next-generation firewall management interfaces, with over 2,000 devices already compromised across multiple countries.