Tag Archives: IoT

Serious vulnerability InRouter firmware from InHand Networks threatens robots, electricity meters, med. devices etc.

[German]Security researchers have discovered a severe security vulnerability CVE-2023-22598 in the InRouter firmware from manufacturer InHand Networks GmbH. The vulnerability, with a CVE value of 10, leaves thousands of wireless IIoT devices vulnerable to remote code execution via the cloud. … Continue reading

Posted in Security | Tagged , | Leave a comment

Advertising

D-Link: End of support for mydlink Home and mydlink Baby Monitor Apps and Cloud Services (Dec. 30, 2022)

[German]Are you using D-Link products like the mydlink Baby Monitor or mydlink Home. Today, December 30, 2022, vendor D-Link will shut down certain cloud services. The aforementioned devices will then become electronic junk because their functionality will be lost. An … Continue reading

Posted in Cloud, devices, issue | Tagged , , , | 41 Comments

How to find weak passwords in Active Directory and eliminate them with PowerShell

[Sponsored Post]Weak or compromised passwords are a known gateway for attackers. If you are able to identify which users in Active Directory (AD) are threatened by this, then PowerShell can help to remedy it. However, PowerShell scripts cannot eliminate basic AD deficits, other tools are needed for this. More ...

Hackers penetrate energy systems via outdated Boa web server of IoT components

[German]Many vendors use outdated software components in their IoT components. Microsoft has now presented a case in which a web server that was discontinued in 2005 was misused to penetrate the systems of Indian power grid via vulnerabilities. The background … Continue reading

Posted in devices, Security | Tagged , | Leave a comment

Advertising

Vulnerabilities in Wyze Cam IoT camera firmware (March 2022)

[German]Security researchers from Bitdefender are drawing attention to vulnerabilities they have discovered in the firmware of Wyze CAM IP video cameras. According to Bitdefender, attackers can bypass the authentication process, gain complete control over the device and read information and … Continue reading

Posted in devices, Security | Tagged , , | 1 Comment

Microsoft Microsoft Security Update Revisions (Jan. 27, 2022)

[German]Microsoft released last night an an email about various revisions to its security advisories. It is about a Windows DCOM server vulnerability and Defender for IoT vulnerabilities. However, everything is only of an informal nature, Microsoft has only adjusted the … Continue reading

Posted in Security | Tagged , , | Leave a comment

Advertising

Windows 11 IoT Enterprise only with 36 months support

[German]After the release of Windows 11 for the desktop, Microsoft has also released Windows 11 IoT Enterprise. This is a version for Internet of Things devices that are supposed to run under Windows. The code is the same as Windows … Continue reading

Posted in Windows | Tagged , | Leave a comment

Vulnerability in 100 million IP cameras from Hikvision and OEMs

[German]A command injection vulnerability exists in the web server of some Hikvision products due to insufficient input validation. Unauthorized persons could send messages with malicious commands to the web server via this vulnerability. The manufacturer has provided a firmware update … Continue reading

Posted in devices, Security, Software | Tagged , , | Leave a comment

HomeOffice and Smart-Home as a gateway for hacks into corporate networks

[German]In times of the coronavirus pandemic, more people are working in their home offices but accessing company computers remotely. On the other hand, more and more IoT devices are finding their place in the home environment as part of smart … Continue reading

Posted in Security | Tagged , | Leave a comment

Advertising

Osram Lightify: Cloud service will be discontinued on 2021/08/31 – features will be lost

[German]At the end of the month August 2021, OSRAM is shutting down its Lightify cloud service. Users who use the Lightify lights will have to take action before August 31, 2021, to keep the bulbs still working and avoiding to … Continue reading

Posted in devices, issue | Tagged | 1 Comment

Vulnerabilities in Realtek SDK put IoT devices at risk

[German]Security researchers at IoT Inspector have found multiple vulnerabilities in a Realtek SDK that allow unauthenticated attackers to fully compromise a device and execute arbitrary code with the highest privileges. The SDK is used by many OEMs to implement WiFi … Continue reading

Posted in devices, Security | Tagged , , , | Leave a comment