ExpressLRS Protocol, Pi Pico W Wireless, Apple v. Spyware, & Lenovo UEFI Flaws – PSW #747
In the Security News for this week: Raspberry Pi Pico W Adds Wireless, Apple expands commitment to protect users from mercenary spyware, UK health authorities slammed for WhatsApp use in pandemic, Three UEFI Firmware flaws found in tens of Lenovo Notebook models, & a Hack Allows Drone Takeover Via ‘ExpressLRS’ Protocol!
The UK Information Commissioner's Office (ICO) on Monday issued a reprimand and called for a review of how and whether messaging services should be used for government business practices, after finding widespread and potentially dangerous use of private email, WhatsApp and other messaging tools by officials at the Department of Health and Social Care (DHSC).
Researchers say they have discovered that various modern Honda vehicles have a vulnerable (medium-severity) rolling code mechanism (CVE-2021-46145) they have dubbed "Rolling-PWN" that allows individuals to remotely unlock the doors and start the car's engine.
Researchers found that the counter in Honda vehicles is resynchronized when the car vehicle gets lock/unlock commands in a consecutive sequence. This causes the car to accept codes from a previous session, which should have been invalidated.
Kubernetes code enabled privilege escalation.
An error in one line of code in an AWS authentication component has created a trio of security bugs. CVE-2022-2385, the bug is a mistake in parameter validation – the code doesn’t check the capitalization of parameters passed to it.
The OpenSSL development team has released a fix to address a high-severity memory corruption flaw (CVE-2022-2274) affecting the OpenSSL library that could be exploited by attackers to perform remote code execution. Affects 3.0.4, update to 3.0.5
The group claiming responsibility for cyberattacks on multiple Iranian steel facilities last month posted almost 20 gigabytes (GB) of data on July 7, 2020, which included corporate documents showing that the facilities are affiliated with Iran's Islamic Revolutionary Guard Corp.
NAS vendor QNAP warned customers to secure their devices against attacks using Checkmate ransomware to encrypt data. QNAP says the attacks are focused on Internet-exposed QNAP devices with the SMB service enabled and accounts with weak passwords that can easily be cracked in brute-force attacks.
This week in the Security Weekly News: the NSA admits to secretly buying your internet browsing data, malicious Google ads target Chinese users, Juniper releases update for Junos OS flaws, Outlook could be leaking your NTLM passwords, WhiteSnake malware on Windows, Jason Wood discusses new guidance on the Microsoft "Midnight Blizzard" attack, and m...