Tag Archives: Rapid7

10Fold- Security Never Sleeps- 117

Liberian Hacking Attempts Cut Internet Access

“October 21st attackers seem responsible”

On November 3rd, continuous attacks from hijacked IoT devices were able to successfully bring down internet access to thousands of people. Some of the attacks were among the biggest ever seen, and targeted huge web companies such as Spotify, Twitter, and Reddit.

New Study Shows Flaw with Smart Bulbs

“New IoT light bulbs vulnerable to hacks”

A recent report titled “IoT Goes Nuclear” has outlined problems seen in new Philips Hue smart light bulbs and similar devices that use ZigBee transmissions. Researchers from the Weizmann Institute of Science and Dalhousie University were successful in hacking and remotely using them from a separate location. Vulnerabilities like these have led to massive DDoS attacks, such as the October 21st web attack that brought many high value sites to their knees for several hours.

Cisco Warns on Security Hole in Management Tool for Connected Homes

“The flaw could have given admin access to unauthorized user”

Cisco has now patched a significant vulnerability in its Prime Home system, a tool that allows a user to manage their smart devices. Before the patch was released, the firm issued an alert that the GUI interface was facing a security flaw that could potentially allow remote users to access functions they otherwise would not be able to access.

Heisenberg Cloud’ Spots Finds Database Services, Misconfigurations

“Undertaken to assess the threat to cloud infrastructure”

A Rapid7 research project has been undertaken to expose the vulnerabilities and misconfigurations in public internet spaces. The Rapid7 ‘Heisenberg Cloud’ combines scan data from scan data from the Heisenberg and Project Sonar.

 

 

 

 

10Fold- Security Never Sleeps- 113

Possible Hack from Recycled Phone Number Concerns Lyft Customers

“Lyft’s login process seems to be to blame”

Instead of a standard username and password, ride-hailing application Lyft registers its users with their mobile phone number. While this is convenient for many customers, the number can remain linked to that account, even if the subscriber changes.

Mobile Tracking Devices for iPad and iPhone Riddled with Critical Flaws

“Bluetooth devices can access iTrack”

A number of critical security issues with IoT home devices have recently been uncovered by research group Rapid7. iTrack easy is of particular concern, as information can be obtained if in proximity to a device tracker. This allows cybercriminals to access GPS data, and also allows data modification without any authorization checks.

Schneider Electric PLC simulator flaw exposes workstations to hacking

“Malicious code could run with debug privileges”

Schneider Electric products industrial controllers reportedly can be hacked remotely using a new malware program found in several devices. Researchers from Indegy have been able to observe several events where unauthenticated accounts were able to execute breaches on Windows computers where Unity Pro PLC simulator was in use. Able to run with possible debugging authority creates serious concern over the security of Schneider products.

Physical RAM attack can root Android and possibly other devices

“ARM and x-86-based devices could be vulnerable”

Android devices have been found to have a possible security flaw, but not with its software. Instead the problem comes from its DRAM capacity, which is too large for the hardware it is loaded onto. With use this can lead to memory cells “leaking” electric charges onto other nearby cells, exposing sensitive and private information.