The source code for a trojan that infected hundreds of thousands of internet-of-things devices and used them to launch distributed denial-of-service attacks was published online, paving the way for more such botnets.
The botnets made up of compromised IoT devices are now capable of launching distributed denial-of-service attacks of unprecedented scale.
Hackers found and disclosed 47 new vulnerabilities affecting 23 IoT devices from 21 manufacturers during during the IoT Village at DEF CON.
Apple has released firmware updates for its AirPort wireless base stations in order to fix a vulnerability that could put the devices at risk of hacking.
Cisco Systems has patched high-impact vulnerabilities in several of its cable modem and residential gateway devices that are distributed by some ISPs to their customers.
A team of security researchers found serious vulnerabilities in over a dozen wireless routers and access points from Netgear and D-Link with the help of an open-source framework that can be used to perform dynamic security analysis on embedded firmware.
Attackers can easily disable SimpliSafe home security systems from up to 30 meters away by using a device that costs around $250 to create, researchers from security firm IOActive found.
Thousands of routers, modems, IP cameras, VoIP phones and other embedded devices share the same hard-coded SSH host keys or HTTPS server certificates.
An analysis of hundreds of publicly available firmware images for routers, DSL modems, VoIP phones, IP cameras and other embedded devices uncovered high-risk vulnerabilities in a significant number of them.
Several DSL routers from different manufacturers contain a guessable hard-coded password that allows accessing the devices with a hidden administrator account.
Some of the vulnerabilities could allow attackers to take over the affected devices.
Tens of routers and other embedded devices from various manufacturers likely have the flaw, security researchers said.
The devices have serious flaws that enable unauthorized remote access and DNS hijacking, a researcher found
The vulnerability allows attackers to extract admin passwords and wireless network keys
In the wake of revelations about eavesdropping Samsung and LG smart TVs, don't forget the wide world of HTPC options available.
Articles by Lucian ConstantinNext Page