Encircle News!

Retro Game Arcade
, , , , , ,

Critical takeover vulnerabilities in 92,000 D-Link devices under active exploitation

Dan Goodin

Photograph depicts a security scanner extracting virus from a string of binary code. Hand with the word "exploit"

Enlarge (credit: Getty Images)

Hackers are actively exploiting a pair of recently discovered vulnerabilities to remotely commandeer network-attached storage devices manufactured by D-Link, researchers said Monday.

Roughly 92,000 devices are vulnerable to the remote takeover exploits, which can be remotely transmitted by sending malicious commands through simple HTTP traffic. The vulnerability came to light two weeks ago. The researcher said they were making the threat public because D-Link said it had no plans to patch the vulnerabilities, which are present only in end-of-life devices, meaning they are no longer supported by the manufacturer.

An ideal recipe

On Monday, researchers said their sensors began detecting active attempts to exploit the vulnerabilities starting over the weekend. Greynoise, one of the organizations reporting the in-the-wild exploitation, said in an email that the activity began around 02:17 UTC on Sunday. The attacks attempted to download and install one of several pieces of malware on vulnerable devices depending on their specific hardware profile. One such piece of malware is flagged under various names by 40 endpoint protection services.

Read 10 remaining paragraphs | Comments

https://arstechnica.com/?p=2015480

Follow Us

Featured Posts

December 2024
M T W T F S S
 1
2345678
9101112131415
16171819202122
23242526272829
3031  

About Us

Welcome to encircle News! We are a cutting-edge technology news company that is dedicated to bringing you the latest and greatest in everything tech. From automobiles to drones, software to hardware, we’ve got you covered.

At encircle News, we believe that technology is more than just a tool, it’s a way of life. And we’re here to help you stay on top of all the latest trends and developments in this ever-evolving field. We know that technology is constantly changing, and that can be overwhelming, but we’re here to make it easy for you to keep up.

We’re a team of tech enthusiasts who are passionate about everything tech and love to share our knowledge with others. We believe that technology should be accessible to everyone, and we’re here to make sure it is. Our mission is to provide you with fun, engaging, and informative content that helps you to understand and embrace the latest technologies.

From the newest cars on the road to the latest drones taking to the skies, we’ve got you covered. We also dive deep into the world of software and hardware, bringing you the latest updates on everything from operating systems to processors.

So whether you’re a tech enthusiast, a business professional, or just someone who wants to stay up-to-date on the latest advancements in technology, encircle News is the place for you. Join us on this exciting journey and be a part of shaping the future.

Podcasts

TWiT 1008: Internet Legal – Australia's Social Media Ban for Kids, Smart Home Nightmare, Bluesky's Ascent This Week in Tech (Audio)

In this week's episode of This Week in Tech, Leo Laporte and guests Devindra Hardawar, Doc Rock, and Jennifer Pattison Tuohy discuss a wide range of topics including Australia's ban on social media for under 16s, the latest in smart home technology and Matter protocol, CES 2024 expectations, Black Friday sales records, Elon Musk's legal battles, the FTC's efforts to protect consumers, and the growing threat of infrastructure sabotage. The panel also touches on the lifespan of smart devices, the ownership of social media accounts, and the growth of Bluesky. Australia bans social media for everyone under 16, sparking a discussion on the challenges of age verification, the necessity of such measures, and the potential impact on children's social lives Jennifer shares her thoughts on the progress and challenges of Matter protocol, the future of smart home technology, and the killer use cases like energy management that could drive broader adoption Devindra looks forward to checking out the latest tech at CES 2024, while the panel discusses the impact of potential tariffs on consumer electronics prices Black Friday online sales hit a record $74.4B, up 5% from last year, with over half of spending done on mobile devices and a surge in traffic to retail sites from AI chatbots Elon Musk files for an injunction to halt OpenAI's transition to a for-profit, accusing the company of discouraging investors from backing rivals like his own xAI Musk admits X is throttling links, effectively limiting people from reading news on the platform, which could impact content creators and marketers The panel discusses the implications of X's objection to The Onion buying InfoWars, reminding users that they do not own their social media accounts or followers As alternative social media platforms like Bluesky gain traction, the panel considers the challenges of managing multiple platforms and the potential for a more decentralized social media landscape The FTC releases a report on the hidden lifespan of smart devices, highlighting the need for transparency and the potential security risks of unsupported devices FTC changes its telemarketing rules to better protect consumers from growing 'tech support scam' calls Supreme Court considers whether ISPs should be liable for users' piracy, with potential far-reaching consequences Concerns rise over infrastructure sabotage as a Chinese ship's crew is suspected of deliberately dragging an anchor for 100 miles to cut Baltic cables Meta plans to build a $10B subsea cable spanning the world to support its services and ensure data traffic flow Host: Leo Laporte Guests: Jennifer Pattison Tuohy, Doc Rock, and Devindra Hardawar Download or subscribe to This Week in Tech at https://twit.tv/shows/this-week-in-tech Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit Sponsors: NetSuite.com/TWIT bitwarden.com/twit e-e.com/twit INFO.ACILEARNING.COM/TWIT – code TWIT100
  1. TWiT 1008: Internet Legal – Australia's Social Media Ban for Kids, Smart Home Nightmare, Bluesky's Ascent
  2. TWiT 1007: All the Hotdogs in the World – China's "Salt Typhoon" Hack, Google on the Chopping Block, Recall AI
  3. TWiT 1006: Underwater Alien Civilizations – Bluesky Growth, Tyson Vs. Paul, AI Granny
  4. TWiT 1005: $125,000 in Baguettes – iPod Turns 23, The $1.1M AI Painting, Roblox
  5. TWiT 1004: Embrace Uncertainty – Political Texts, Daylight Saving Time, Digital Ad Market