Category: Hardware
-
Rowhammer Attack Against NVIDIA Chips
Rowhammer Attack Against NVIDIA Chips A new rowhammer attack gives complete control of NVIDIA CPUs. On Thursday, two research teams, working independently of each other, demonstrated attacks against two cards from Nvidia’s Ampere generation that take GPU rowhammering into new—and potentially much more consequential—territory: GDDR bitflips that give adversaries full control of CPU memory, resulting…
-
New Mirai campaign exploits RCE flaw in EoL D-Link routers
New Mirai campaign exploits RCE flaw in EoL D-Link routers A new Mirai-based malware campaign is actively exploiting CVE-2025-29635, a high-severity command-injection vulnerability affecting D-Link DIR-823X routers, to enlist devices into the botnet. […] Bill Toulas Go to bleepingcomputer
-
New GPUBreach attack enables system takeover via GPU rowhammer
New GPUBreach attack enables system takeover via GPU rowhammer A new attack, dubbed GPUBreach, can induce Rowhammer bit-flips on GPU GDDR6 memories to escalate privileges and lead to a full system compromise. […] Bill Toulas Go to bleepingcomputer
-
US Bans All Foreign-Made Consumer Routers
US Bans All Foreign-Made Consumer Routers This is for new routers; you don’t have to throw away your existing ones: The Executive Branch determination noted that foreign-produced routers (1) introduce “a supply chain vulnerability that could disrupt the U.S. economy, critical infrastructure, and national defense” and (2) pose “a severe cybersecurity risk that could be…
-
FCC bans new routers made outside the USA over security risks
FCC bans new routers made outside the USA over security risks The Federal Communications Commission has updated its Covered List to include all consumer routers made in foreign countries, banning the sale of new models in the U.S. […] Bill Toulas Go to bleepingcomputer
-
New D-Link flaw in legacy DSL routers actively exploited in attacks
New D-Link flaw in legacy DSL routers actively exploited in attacks Threat actors are exploiting a recently discovered command injection vulnerability that affects multiple D-Link DSL gateway routers that went out of support years ago. […] Bill Toulas Go to bleepingcomputer
-
New UEFI flaw enables pre-boot attacks on motherboards from Gigabyte, MSI, ASUS, ASRock
New UEFI flaw enables pre-boot attacks on motherboards from Gigabyte, MSI, ASUS, ASRock The UEFI firmware implementation in some motherboards from ASUS, Gigabyte, MSI, and ASRock is vulnerable to direct memory access (DMA) attacks that can bypass early-boot memory protections. […] Bill Toulas Go to bleepingcomputer
-
Synology fixes BeeStation zero-days demoed at Pwn2Own Ireland
Synology fixes BeeStation zero-days demoed at Pwn2Own Ireland Synology has addressed a critical-severity remote code execution (RCE) vulnerability in BeeStation products that was demonstrated at the recent Pwn2Own hacking competition. […] Bill Toulas Go to bleepingcomputer
-
New Attacks Against Secure Enclaves
New Attacks Against Secure Enclaves Encryption can protect data at rest and data in transit, but does nothing for data in use. What we have are secure enclaves. I’ve written about this before: Almost all cloud services have to perform some computation on our data. Even the simplest storage provider has code to copy bytes…
-
Leaked Apple iPad Pro M5 benchmark shows massive improvements
Leaked Apple iPad Pro M5 benchmark shows massive improvements A new leaked benchmark shows Apple’s alleged M5 chip on an iPad, and it’s almost as fast as a desktop CPU. […] Mayank Parmar Go to bleepingcomputer
-
DrayTek warns of remote code execution bug in Vigor routers
DrayTek warns of remote code execution bug in Vigor routers Networking hardware maker DrayTek released an advisory to warn about a security vulnerability in several Vigor router models that could allow remote, unauthenticated actors to execute perform arbitrary code. […] Bill Toulas Go to bleepingcomputer
-
Apple’s New Memory Integrity Enforcement
Apple’s New Memory Integrity Enforcement Apple has introduced a new hardware/software security feature in the iPhone 17: “Memory Integrity Enforcement,” targeting the memory safety vulnerabilities that spyware products like Pegasus tend to use to get unauthorized system access. From Wired: In recent years, a movement has been steadily growing across the global tech industry to…
-
China Accuses Nvidia of Putting Backdoors into Their Chips
China Accuses Nvidia of Putting Backdoors into Their Chips The government of China has accused Nvidia of inserting a backdoor into their H20 chips: China’s cyber regulator on Thursday said it had held a meeting with Nvidia over what it called “serious security issues” with the company’s artificial intelligence chips. It said US AI experts…
-
Gigabyte motherboards vulnerable to UEFI malware bypassing Secure Boot
Gigabyte motherboards vulnerable to UEFI malware bypassing Secure Boot Dozens of Gigabyte motherboard models run on UEFI firmware vulnerable to security issues that allow planting bootkit malware that is invisible to the operating system and can survive reinstalls. […] Bill Toulas Go to bleepingcomputer
-
NVIDIA shares guidance to defend GDDR6 GPUs against Rowhammer attacks
NVIDIA shares guidance to defend GDDR6 GPUs against Rowhammer attacks NVIDIA is warning users to activate System Level Error-Correcting Code mitigation to protect against Rowhammer attacks on graphical processors with GDDR6 memory. […] Bill Toulas Go to bleepingcomputer
-
New Mirai botnet infect TBK DVR devices via command injection flaw
New Mirai botnet infect TBK DVR devices via command injection flaw A new variant of the Mirai malware botnet is exploiting a command injection vulnerability in TBK DVR-4104 and DVR-4216 digital video recording devices to hijack them. […] Bill Toulas Go to bleepingcomputer
-
FBI: End-of-life routers hacked for cybercrime proxy networks
FBI: End-of-life routers hacked for cybercrime proxy networks The FBI warns that threat actors are deploying malware on end-of-life (EoL) routers to convert them into proxies sold on the 5Socks and Anyproxy networks. […] Bill Toulas Go to bleepingcomputer
-
ASUS releases fix for AMI bug that lets hackers brick servers
ASUS releases fix for AMI bug that lets hackers brick servers ASUS has released security updates to address CVE-2024-54085, a maximum severity flaw that could allow attackers to hijack and potentially brick servers. […] Bill Toulas Go to bleepingcomputer
-
ASUS warns of critical auth bypass flaw in routers using AiCloud
ASUS warns of critical auth bypass flaw in routers using AiCloud ASUS is warning about an authentication bypass vulnerability in routers with AiCloud enabled that could allow remote attackers to perform unauthorized execution of functions on the device. […] Bill Toulas Go to bleepingcomputer
-
Undocumented “backdoor” found in Bluetooth chip used by a billion devices
Undocumented “backdoor” found in Bluetooth chip used by a billion devices The ubiquitous ESP32 microchip made by Chinese manufacturer Espressif and used by over 1 billion units as of 2023 contains an undocumented “backdoor” that could be leveraged for attacks. […] Bill Toulas Go to bleepingcomputer
-
Vo1d malware botnet grows to 1.6 million Android TVs worldwide
Vo1d malware botnet grows to 1.6 million Android TVs worldwide A new variant of the Vo1d malware botnet has grown to 1,590,299 infected Android TV devices across 226 countries, recruiting devices as part of anonymous proxy server networks. […] Bill Toulas Go to bleepingcomputer
-
Zyxel won’t patch newly exploited flaws in end-of-life routers
Zyxel won’t patch newly exploited flaws in end-of-life routers Zyxel has issued a security advisory about actively exploited flaws in CPE Series devices, warning that it has no plans to issue fixing patches and urging users to move to actively supported models. […] Bill Toulas Go to bleepingcomputer
-
New Apple CPU side-channel attacks steal data from browsers
New Apple CPU side-channel attacks steal data from browsers A team of security researchers has disclosed new side-channel vulnerabilities in modern Apple processors that could steal sensitive information from web browsers. […] Bill Toulas Go to bleepingcomputer
-
Vulnerable Moxa devices expose industrial networks to attacks
Vulnerable Moxa devices expose industrial networks to attacks Industrial networking and communications provider Moxa is warning of a high-severity and a critical vulnerability that impact various models of its cellular routers, secure routers, and network security appliances. […] Bill Toulas Go to bleepingcomputer
-
Hackers exploit Four-Faith router flaw to open reverse shells
Hackers exploit Four-Faith router flaw to open reverse shells Threat actors are exploiting a post-authentication remote command injection vulnerability in Four-Faith routers tracked as CVE-2024-12856 to open reverse shells back to the attackers. […] Bill Toulas Go to bleepingcomputer
-
BadBox malware botnet infects 192,000 Android devices despite disruption
BadBox malware botnet infects 192,000 Android devices despite disruption The BadBox Android malware botnet has grown to over 192,000 infected devices worldwide despite a recent sinkhole operation that attempted to disrupt the operation in Germany. […] Bill Toulas Go to bleepingcomputer
-
OpenWrt Sysupgrade flaw let hackers push malicious firmware images
OpenWrt Sysupgrade flaw let hackers push malicious firmware images A flaw in OpenWrt’s Attended Sysupgrade feature used to build custom, on-demand firmware images could have allowed for the distribution of malicious firmware packages. […] Bill Toulas Go to bleepingcomputer
-
Korea arrests CEO for adding DDoS feature to satellite receivers
Korea arrests CEO for adding DDoS feature to satellite receivers South Korean police have arrested a CEO and five employees for manufacturing over 240,000 satellite receivers pre-loaded or later updated to include DDoS attack functionality at a purchaser’s request. […] Bill Toulas Go to bleepingcomputer