Latest Hardware news

Hackers exploit critical D-Link DIR-859 router flaw to steal passwords

Hackers are exploiting a critical vulnerability that affects all D-Link DIR-859 WiFi routers to collect account information from the device, including passwords.
- Bill Toulas
- June 29, 2024
- 11:18 AM
- 1
New ARM 'TIKTAG' attack impacts Google Chrome, Linux systems

A new speculative execution attack named "TIKTAG" targets ARM's Memory Tagging Extension (MTE) to leak data with over a 95% chance of success, allowing hackers to bypass the security feature.
- Bill Toulas
- June 16, 2024
- 10:16 AM
- 1
ASUS warns of critical remote authentication bypass on 7 routers

ASUS has released a new firmware update that addresses a vulnerability impacting seven router models that allow remote attackers to log in to devices.
- Bill Toulas
- June 15, 2024
- 11:17 AM
- 4
Netgear WNR614 flaws allow device takeover, no fix available

Researchers found half a dozen vulnerabilities of varying severity impacting Netgear WNR614 N300, a budget-friendly router that proved popular among home users and small businesses.
- Bill Toulas
- June 10, 2024
- 05:38 PM
- 0
Malware botnet bricked 600,000 routers in mysterious 2023 attack

A malware botnet named 'Pumpkin Eclipse' performed a mysterious destructive event in 2023 that took 600,000 office/home office (SOHO) internet routers offline, according to a new report by researchers at Lumen's Black Lotus Labs.
- Bill Toulas
- May 30, 2024
- 02:56 PM
- 1
TP-Link fixes critical RCE bug in popular C5400X gaming router

The TP-Link Archer C5400X gaming router is vulnerable to security flaws that could enable an unauthenticated, remote attacker to execute commands on the device.
- Bill Toulas
- May 27, 2024
- 03:11 PM
- 2
Widely used modems in industrial IoT devices open to SMS attack

Security flaws in Telit Cinterion cellular modems, widely used in sectors including industrial, healthcare, and telecommunications, could allow remote attackers to execute arbitrary code via SMS.
- Bill Toulas
- May 10, 2024
- 04:00 AM
- 0
New Spectre v2 attack impacts Linux systems on Intel CPUs

Researchers have demonstrated the "first native Spectre v2 exploit" for a new speculative execution side-channel flaw that impacts Linux systems running on many modern Intel processors.
- Bill Toulas
- April 10, 2024
- 01:19 PM
- 2
$700 cybercrime software turns Raspberry Pi into an evasive fraud tool

Cybercriminals are selling custom Raspberry Pi software called 'GEOBOX' on Telegram, which allows inexperienced hackers to convert the mini-computers into anonymous cyberattack tools.
- Bill Toulas
- March 26, 2024
- 04:40 PM
- 2
New ZenHammer memory attack impacts AMD Zen CPUs

Academic researchers developed ZenHammer, the first variant of the Rowhammer DRAM attack that works on CPUs based on recent AMD Zen microarchitecture that map physical addresses on DDR4 and DDR5 memory chips.
- Bill Toulas
- March 25, 2024
- 12:00 PM
- 0
Flipper Zero makers respond to Canada’s ‘harmful’ ban proposal

The makers of Flipper Zero have responded to the Canadian government's plan to ban the device in the country, arguing that it is wrongfully accused of facilitating car thefts.
- Bill Toulas
- March 20, 2024
- 09:48 AM
- 7
Acer confirms Philippines employee data leaked on hacking forum

Acer Philippines confirmed that employee data was stolen in an attack on a third-party vendor who manages the company's employee attendance data after a threat actor leaked the data on a hacking forum.
- Bill Toulas
- March 12, 2024
- 03:31 PM
- 0
AMD, Apple, Qualcomm GPUs leak AI data in LeftoverLocals attacks

A new vulnerability dubbed 'LeftoverLocals' affecting graphics processing units from AMD, Apple, Qualcomm, and Imagination Technologies allows retrieving data from the local memory space.
- Bill Toulas
- January 17, 2024
- 10:32 AM
- 1
"Sierra:21" vulnerabilities impact critical infrastructure routers

A set of 21 newly discovered vulnerabilities impact Sierra OT/IoT routers and threaten critical infrastructure with remote code execution, unauthorized access, cross-site scripting, authentication bypass, and denial of service attacks.
- Bill Toulas
- December 06, 2023
- 01:01 AM
- 1
D-Link WiFi range extender vulnerable to command injection attacks

The popular D-Link DAP-X1860 WiFi 6 range extender is susceptible to a vulnerability allowing DoS (denial of service) attacks and remote command injection.
- Bill Toulas
- October 09, 2023
- 05:53 PM
- 1
Zenbleed attack leaks sensitive data from AMD Zen2 processors

Google's security researcher Tavis Ormandy discovered a new vulnerability impacting AMD Zen2 CPUs that could allow a malicious actor to steal sensitive data, such as passwords and encryption keys, at a rate of 30KB/sec from each CPU core.
- Bill Toulas
- July 24, 2023
- 05:28 PM
- 1
Cisco phone adapters vulnerable to RCE attacks, no fix available

Cisco has disclosed a vulnerability in the web-based management interface of Cisco SPA112 2-Port Phone Adapters, allowing an unauthenticated, remote attacker to execute arbitrary code on the devices.
- Bill Toulas
- May 04, 2023
- 01:28 PM
- 0
Stock up on the hardware you need with these refurbished items

Refurbished equipment is a useful method of getting needed equipment for remote work and personal projects. Right now, you can stock up on the laptops, tablets, and accessories you need, no coupon needed.
- BleepingComputer Deals
- June 02, 2022
- 02:17 PM
- 0
Russia facing internet outages due to equipment shortage

The Commission for Communications and IT at "PCΠΠ", the country's largest entrepreneurship union, has warned about the rising threat of extensive service outages due to a lack of telecom equipment.
- Bill Toulas
- March 28, 2022
- 11:59 AM
- 5
MITRE shares list of most dangerous hardware weaknesses

MITRE shared a list of the topmost dangerous programming, design, and architecture security flaws plaguing hardware this year.
- Sergiu Gatlan
- November 02, 2021
- 08:27 AM
- 0