Unfixed vulnerability in popular library puts IoT products at risk

Researchers have disclosed an unpatched vulnerability in the popular uClibc library that could allow attackers to use DNS poisoning.

Read more

Clouding the issue: what cloud threats lie in wait in 2022?

We offer up some thoughts on where new and continuing attacks in the world of cloud may occur, alongside linking some current examples.

Read more

New law will issue bans, fines for using default passwords on smart devices

The UK government has just introduced new law to protect consumers from internet-connected smart devices that use default passwords.

Read more

Realtek-based routers, smart devices are being gobbled up by a voracious botnet

Yet again, recently disclosed vulnerabilities in smart devices are being exploited quickly to expand the Mirai botnet.

Read more

Largest DDoS attack ever reported gets hoovered up by Cloudflare

Botnets DDoS attacks are enormous, So is Cloudflare.

Read more

UDP Technology IP Camera firmware vulnerabilities allow for attacker to achieve root

Researchers found 11 vulnerabilities in IP camera firmware, but the vendor refused to work with them. As a result users are left wondering whether their camera’s can be taken over remotely.

Read more

IoT riddled with BadAlloc vulnerabilities

A set of memory allocation vulnerabilities, dubbed BadAlloc, has been found in a massive number of IoT and OT devices.

Read more

150,000 Verkada security cameras hacked—to make a point

Hospitals, banks, police departments, prisons, schools, and companies like Tesla and Cloudflare are victims of an attack on Verkada.

Read more

A week in security (January 18 – January 24)

An action-packed week on Malwarebytes Labs with ZeroLogon, DNSPooq, WhatsApp privacy, Tiktok settings, Zoom watermarking, and more.

Read more

Ubiquiti breach, and other IoT security problems

Ubiquiti informed its customers about unauthorized access to its online customer portal. Here’s what you need to know.

Read more

Select your language