The Information Highway

The Information Highway

command injection

D-Link NAS vulnerabilities

Thursday, 11 April 2024

LBT Technology Group, LLC.

Security

Threat-Advisory-Banner

Threat update

Two vulnerabilities were found in legacy D-Link products that have reached end-of-life (EoL) status. The vulnerabilities can cause command injection and backdoor account to these devices. This Cybersecurity Threat Advisory discusses the impact of the threat, as well as recommendations to mitigate risks these vulnerabilities may cause.

Continue reading

83 Hits

0 Comments

Tags:

command injection legacy D-Link products vulnerabilities block move

Over 92,000 exposed D-Link NAS devices have a backdoor account

Saturday, 06 April 2024

Security News

A threat researcher has disclosed a new arbitrary command injection and hardcoded backdoor flaw in multiple end-of-life D-Link Network Attached Storage (NAS) device models..

Continue reading

134 Hits

0 Comments

Tags:

threat researcher command injection flaw end-of-life D-Link Network Attached Storage device models

Blog Categories
Security 296 post(s) News 193 post(s) Technology 114 post(s) Compliance 23 post(s) Cloud Computing 9 post(s) Uncategorized 1 post(s) Business Continuity & Disaster Recovery 0 post(s)

You May Also Like

MITRE says state hackers breached its network via Ivanti zero-days

The MITRE Corporation says that a state-backed hacking group breached its systems in January 2024 by...

LA County Health Services: Patients' data exposed in phishing attack

The Los Angeles County Department of Health Services disclosed a data breach after thousands of pati...

Zyxel warns of multiple critical vulnerabilities in NAS devices

Zyxel has addressed multiple security issues, including three critical ones that could allow an unau...

CISA tags Microsoft SharePoint RCE bug as actively exploited

CISA warns that attackers are now exploiting a Microsoft SharePoint code injection vulnerability tha...

StripedFly malware framework infects 1 million Windows, Linux hosts

A sophisticated cross-platform malware platform named StripedFly flew under the radar of cybersecuri...

Blog Archive

Recent Comments
No comments yet.

Recent Blogs

27 April 2024

Killware: The emerging cyberthreat

27 April 2024

Okta warns of "unprecedented" credential stuffing attacks on customers

26 April 2024

Kaiser Permanente: Data breach may impact 13.4 million patients

25 April 2024

FBI warns against using unlicensed crypto transfer services

25 April 2024

LA County Health Services: Patients' data exposed in phishing attack

Tag Cloud