Millions of Tenda, Netgear, Western Digital, TP-Link, D-Link, and EDiMAX end-user routers are being affected by a high-severity buffer overflow vulnerability in the KCodes NetUSB component, a Linux kernel module allowing local network-connected devices to offer USB-based services, The Hacker News reports.
A SentinelOne report revealed that threat actors could exploit the flaw, tracked as CVE-2021-45068, to facilitate remote code execution in the kernel and conduct more malicious activities, according to researchers.
KCodes has already issued a fix to the vulnerability in November after being notified by SentinelOne in September. Firmware updates addressing the bug have also been released by Netgear.
"Since this vulnerability is within a third-party component licensed to various router vendors, the only way to fix this is to update the firmware of your router, if an update is available. It is important to check that your router is not an end-of-life model as it is unlikely to receive an update for this vulnerability," said researcher Max Van Amerongen.
SiliconAngle reports that mounting security alert fatigue has prompted Torq to introduce its new HyperSOC system based on its Hyperautomation Platform using artificial intelligence to enable security operation center response automation, management, and monitoring in a bid to bolster the investigation and remediation of cybersecurity threats.
Moldovan botnet operator Alexander Lefterov, also known as Alipatime, Alipako, and Uptime, has been indicted by the U.S. Department of Justice for his involvement in widespread attacks against U.S.-based computers, BleepingComputer reports.
CyberScoop reports that over 100 Ukrainian local government and police documents uploaded to VirusTotal in February were discovered to have been infected with the OfflRouter malware, which dates back to 2015 and could only spread through already compromised files and removable media devices.