Hardcoded Credentials Expose Customers of AT&T U-Verse

Friday, September 1st, 2017

On August 31, 2017, Nomotion released five vulnerabilities for two Arris modems used by AT&T U-Verse customers in the US. The vulnerabilities are of the following types: Hardcoded Credentials (CWE-798) Information Exposure (CWE-200) Authenticated Command Injection (CWE-78) Firewall Bypass (CWE-653) The hardcoded credentials give attackers access to the device via SSH or HTTP/HTTPS. ...

AVG putting millions of Chrome users at risk

Friday, January 1st, 2016

Security company AVG, well known for its free and commercial security products that offer a wide range of security related safeguards and services, has put millions of Chrome users at risk recently by breaking Chrome security in a fundamental way in one of its extensions for the web browser. AVG, like ...

How to Ensure Your Home Router Has the Latest Security Updates

Monday, December 22nd, 2014

Keeping your home router updated is a crucial part of staying secure. Shellshock affected a number of routers, and we’ve also seen routers hacked and turned into botnets. Home router security is notoriously poor. You should ensure your router is getting security updates, too. Depending on your router, you may have to do this ...

Security vulnerabilities found in 80% of best-selling SOHO wireless routers

Friday, February 21st, 2014

Tripwire has analyzed the security provided by the most popular wireless routers used in many small and home offices and found that 80 percent of Amazon’s top 25 best-selling SOHO wireless router models have security vulnerabilities. Of these vulnerable models, 34 percent have publicly documented exploits that make it relatively simple ...

Sophisticated Malware Is Stumping Security Pros

Thursday, July 25th, 2013

The ferocious nature of modern malware is wreaking havoc on some organizations, forcing security professionals to reassess current security policies and consider spending on modernizing defenses to detect attacks, according to a new survey. The study, released this week by Enterprise Strategy Group and commissioned by Malwarebytes, surveyed 315 security professionals ...