Threats

A Twitter message from Ken Munro of Pen Test Partners showing the list of pre-configured administrator passwords for ZySecurity devices.

Mirai Redux: A Year’s Worth of DVR Passwords Published Online

In-brief: DVRs pre-programmed with a list of date-specific master passwords that leaked online may have ties back to Xiongmai Technologies, the same firm whose software was compromised by the Mirai botnet. 

A flaw in smart cameras sold by Samsung leaves them vulnerable to remote attack, researchers claim.

Flaw Lets Hackers Own Samsung Smartcams With Bogus Firmware

In-brief: a flaw in Samsung’s Smartcam product could allow remote attackers to take control of the devices. The news comes two years after Samsung took steps to patch other flaws in its Internet connected cameras.

A database containing 900 gigabytes of customer data and support requests for the Israeli firm Cellebrite was stolen and leaked to the website Motherboard. Cellebrite makes technology that helps law enforcement agencies get data off of mobile devices.

Surveillance Technology Vendor Cellebrite Has Customer Data Stolen

In-brief: Cellebrite, an Israeli firm that sells mobile phone forensic tools, was the victim of a hack that stole information on customers – many of them law enforcement agencies and governments.

A cyber attack in December was responsible for a power outage in Ukraine - almost a year to the day after a similar attack in 2015.

Second Ukraine Power Outage Linked to Russian Hackers

In-brief: A cyber attack in December was responsible for a power outage in Ukraine – almost a year to the day after a similar attack in 2015, new research shows.

St. Jude issued a software fix for its Merlin@ home product Monday, which is used to manage implantable defibrillators and other implantable medical devices.

St. Jude Patches Hole that allowed Medical Device Hacks

In-brief: St. Jude Medical said on Monday that it patched a serious hole in a product used to program implantable medical devices like defibrillators. But researchers and a Wall Street investment firm say the company still has more holes to close.