TP-Link fixed a critical flaw that exposed over 32 VIGI C and VIGI InSight camera models to remote hacking, with over 2,500 internet-exposed devices identified. TP-Link fixed a high-severity flaw, tracked as CVE-2026-0629 (CVSS score 8.7), affecting over 32 VIGI C and VIGI InSight camera models. The vulnerability lets attackers on a local network bypass…
Category: internet of things
Breaking News, Exploits, Global Security News, hacking, internet of things, Security
Hackers actively exploit critical RCE flaw in legacy D-Link DSL routers
Attackers are exploiting a critical flaw (CVE-2026-0625) in old D-Link DSL routers that allows remote command execution. Threat actors are actively exploiting a critical RCE flaw, tracked as CVE-2026-0625 (CVSS score of 9.3), in legacy D-Link DSL routers. The vulnerability is an improper neutralization of special elements used in an OS Command (‘OS Command Injection’),…
Breaking News, Global Security News, internet of things, Security
New ASUS firmware patches critical AiCloud vulnerability
ASUS released new firmware to address multiple vulnerabilities, including a critical authentication bypass flaw in routers with AiCloud enabled. ASUS has issued new firmware addressing nine security vulnerabilities, including a critical authentication bypass, tracked as CVE-2025-59366 (CVSS score of 9.2), affecting routers with AiCloud enabled. “Researchers have reported potential vulnerabilities in ASUS Router. ASUS has…
Breaking News, Cyber warfare, Exploits, Global Security News, hacking, internet of things, Laws and regulations
$10M reward for Russia’s FSB officers accused of hacking US Critical infrastructure
US offers $10M for Russian FSB officers Tyukov, Gavrilov & Akulov, accused of attacking US critical infrastructure and over 500 energy firms worldwide. The US Department of State is offering up to $10M for info on FSB officers Pavel Aleksandrovich Akulov, Mikhail Mikhailovich Gavrilov, and Marat Valeryevich Tyukov, accused of hacking US infrastructure and over…
Breaking News, Exploits, Global Security News, hacking, hacking news, internet of things, Security
Severe Hikvision HikCentral product flaws: What You Need to Know
Hikvision HikCentral flaw allows unauthenticated users to gain admin rights, risking full control over configs, logs, and critical monitoring. Security researchers warn of three vulnerabilities impacting Hikvision HikCentral, which is a centralized management software used across many industries for video surveillance, access control, and integrated security operations. The three vulnerabilities are: CVE-2025-39245 – Base score:…
Breaking News, Global Security News, hacking, internet of things, Security
Dahua Camera flaws allow remote hacking. Update firmware now
Critical flaws in Dahua cameras let hackers take control remotely. The vendor has released patches, users should update firmware asap. Bitdefender cybersecurity experts discovered serious vulnerabilities in Dahua smart cameras that could have allowed hackers to take full control of the devices remotely. Fortunately, the vulnerabilities have been patched, but users are urged to update…
Breaking News, Global Security News, hacking, hacking news, internet of things, Security
Unpatched flaw in EoL LG LNV5110R cameras lets hackers gain Admin access
Hundreds of LG LNV5110R cameras are affected by an unpatched auth bypass flaw that allows hackers to gain admin access. US Cybersecurity and Infrastructure Security Agency warns that hundreds of LG LNV5110R cameras are impacted by an unpatched authentication bypass vulnerability. The flaw, tracked as CVE-2025-7742 (CVSS score of 8.3), can allow attackers to gain admin…
Breaking News, CISA, End-of-Train, Exploits, Global Security News, hacking, internet of things
An attacker using a $500 radio setup could potentially trigger train brake failures or derailments from a distance
A 20-year-old flaw in End-of-Train and Head-of-Train systems could let hackers trigger emergency braking, finally getting proper attention. US CISA has warned about a critical flaw, tracked as CVE-2025-1727, in the radio-based linking protocol between End-of-Train (EoT) and Head-of-Train (HoT) systems. An End-of-Train (EoT) device, also known as a Flashing Rear End Device (FRED), is…
cyber security, esp32, Exploits, Global Security News, Hardware, internet of things, IoT Security, microcontroller, Mobile Security, Mobility, Research, Security, supply chain, tarlogic, vulnerability, wifi
Billions of Devices at Risk of Hacking & Impersonation Due to Hidden Commands
Researchers warn these commands could be exploited to manipulate memory, impersonate devices, and bypass security controls.
Analytics & Intelligence, Asia Pacific, china, Congress, Cyberlaw, Cybersecurity, Editorial Calendar, Featured, flawed routers, Global Security News, Governance, Risk & Compliance, House of Representatives, Humor, Incident Response, Industry Spotlight, internet of things, Internet of Things (IoT), Internet of Things cyber security, internetof things, internetofthings, internte-of-things, IoT, IoT & ICS Security, Jeff Barney, John Moolenaar, Most Read This Week, Network Security, News, OpenWrt, Peoples Republic of China, Popular Post, Raja Krishnamoorthi, Rob Joyce, router compromise, router exploit, router firmware security flaw, router hacking, router hijacking, router security, router vulnerabilities, SB Blogwatch, Security Awareness, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Social Engineering, SOHO, SOHO and IoT device vulnerabilities, Spotlight, Threat Intelligence, Threats & Breaches, TP-LINK, U.S. Commerce Department, US Congress, vulnerabilities
‘Ban These Chinese Routers NOW,’ Cries House Committee
Sino stoppage scheme: TP-Link in crosshairs, along with other brands. The post ‘Ban These Chinese Routers NOW,’ Cries House Committee appeared first on Security Boulevard.
Analytics & Intelligence, Cloud Security, Cyberlaw, Cybersecurity, Data Privacy, DevOps, Endpoint, Featured, Fiat, Fuel Rewards, GasBuddy, Global Security News, Governance, Risk & Compliance, Humor, Incident Response, Industry Spotlight, insurance, Insurance Companies, insurance company, internet of things, Internet of Things (IoT), Internet of Things (IoT) Security, Internet of Things cyber security, iOS spyware, IoT, IoT & ICS Security, Jeep, Lexus, Life360, malware, Maserati, Mazda, Mobile Security, Most Read This Week, mozilla, Mozilla Foundation, New Cars, News, Popular Post, privacy, Privacy4Cars, RAM, Routely, SB Blogwatch, Security Awareness, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Social Engineering, Spotlight, Spyware, Stellantis, Texas Data Privacy and Security Act, Threat Intelligence, Threats & Breaches, Toyota, vehicle, vehicle cybersecurity, vehicle OTAs
Allstate Violates Drivers’ Privacy, Texas AG Alleges
Don’t Mess With Texas Privacy: “We will hold all these companies accountable,” rants state attorney general Ken Paxton (pictured). The post Allstate Violates Drivers’ Privacy, Texas AG Alleges appeared first on Security Boulevard.
Amazon, Cybersecurity, Global Security News, Hardware, internet of things, IoT, Security, united states
US to Launch Cyber Trust Mark to Label Secure Smart Devices
The Cyber Trust Mark is designed to help consumers make more informed decisions about the cybersecurity of devices they may purchase.
Application Security, Cyberlaw, Cybersecurity, Data Privacy, Data Security, DevOps, Endpoint, Family Tree DNA, Featured, Global Security News, Governance, Risk & Compliance, Hackable Medical Devices, Humor, Incident Response, industrial internet of things, Industry Spotlight, internet of things, Internet of Things (IoT), Internet of Things (IoT) Security, Internet of Things cyber security, internetof things, internetofthings, internte-of-things, Intranet of Things, IoT, IoT & ICS Security, medical, medical data, medical device, medical device security, Medical Devices, Medical devices cyber security, medical equipment, Most Read This Week, Network Security, News, Popular Post, Ransomware, Ransomware of Things, SB Blogwatch, secure boot, Security Awareness, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Social Engineering, Spotlight, Threats & Breaches, vulnerabilities
Insecure Medical Devices — Illumina DNA Sequencer Illuminates Risks
IEI-IEI, Oh: Running an obsolete OS, on obsolete hardware, configured with obsolete settings. The post Insecure Medical Devices — Illumina DNA Sequencer Illuminates Risks appeared first on Security Boulevard.
Cybersecurity, Global IT News, Global Security News, internet of things, IoT, Security
US government set to launch its Cyber Trust Mark cybersecurity labeling program for internet-connected devices in 2025
The cybersecurity consumer labeling program will launch in 2025, the Biden administration confirmed, after initially slated for last year. © 2024 TechCrunch. All rights reserved. For personal use only.
Asia Pacific, china, fbi, Federal Bureau of Investigation (FBI), Financial, Flax Typhoon, Geopolitics, Global Security News, Integrity Technology Group, internet of things, Internet of Things (IoT), State Department, Technology, Treasury Department
U.S. sanctions take aim at Chinese company said to aid hackers’ massive botnet
The U.S. government on Friday sanctioned a Chinese company that Western nations had connected to a Beijing-sponsored hacking group’s botnet, which had compromised hundreds of thousands of devices before a joint takedown operation last year. Flax Typhoon hackers made use of infrastructure at Integrity Technology Group to exploit victims, according to the Treasury Department’s Office…