New Blog Post | Microsoft finds new NETGEAR firmware vulnerabilities

%3CLINGO-SUB%20id%3D%22lingo-sub-2503214%22%20slang%3D%22en-US%22%3ENew%20Blog%20Post%20%7C%20Microsoft%20finds%20new%20NETGEAR%20firmware%20vulnerabilities%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-2503214%22%20slang%3D%22en-US%22%3E%3CP%3E%3CSPAN%20class%3D%22lia-inline-image-display-wrapper%20lia-image-align-inline%22%20image-alt%3D%22Figure1-extracting-the-filesystem-from-firmware.png%22%20style%3D%22width%3A%20400px%3B%22%3E%3CIMG%20src%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fimage%2Fserverpage%2Fimage-id%2F292685iE2D11BD623B53D2E%2Fimage-size%2Fmedium%3Fv%3Dv2%26amp%3Bpx%3D400%22%20role%3D%22button%22%20title%3D%22Figure1-extracting-the-filesystem-from-firmware.png%22%20alt%3D%22Figure1-extracting-the-filesystem-from-firmware.png%22%20%2F%3E%3C%2FSPAN%3E%3C%2FP%3E%0A%3CP%3E%3CA%20href%3D%22https%3A%2F%2Fwww.microsoft.com%2Fsecurity%2Fblog%2F2021%2F06%2F30%2Fmicrosoft-finds-new-netgear-firmware-vulnerabilities-that-could-lead-to-identity-theft-and-full-system-compromise%2F%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3EMicrosoft%20finds%20new%20NETGEAR%20firmware%20vulnerabilities%20that%20could%20lead%20to%20identity%20theft%20and%20full%20system%20compromise%20%7C%20Microsoft%20Security%20Blog%3C%2FA%3E%3C%2FP%3E%0A%3CP%3E%3CSPAN%3EThe%20continuous%20improvement%20of%20security%20solutions%20has%20forced%20attackers%20to%20explore%20alternative%20ways%20to%20compromise%20systems.%20The%26nbsp%3B%3C%2FSPAN%3E%3CA%20href%3D%22https%3A%2F%2Fwww.microsoft.com%2Fsecurity%2Fblog%2F2021%2F03%2F30%2Fnew-security-signals-study-shows-firmware-attacks-on-the-rise-heres-how-microsoft-is-working-to-help-eliminate-this-entire-class-of-threats%2F%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3Erising%20number%20of%20firmware%20attacks%3C%2FA%3E%3CSPAN%3E%26nbsp%3Band%26nbsp%3B%3C%2FSPAN%3E%3CA%20href%3D%22https%3A%2F%2Fwww.microsoft.com%2Fsecurity%2Fblog%2F2020%2F04%2F28%2Fransomware-groups-continue-to-target-healthcare-critical-services-heres-how-to-reduce-risk%2F%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3Eransomware%20attacks%20via%20VPN%20devices%20and%20other%20internet-facing%20systems%3C%2FA%3E%3CSPAN%3E%26nbsp%3Bare%20examples%20of%20attacks%20initiated%20outside%20and%20below%20the%20operating%20system%20layer.%20As%20these%20types%20of%20attacks%20become%20more%20common%2C%20users%20must%20look%20to%20secure%20even%20the%20single-purpose%20software%20that%20run%20their%20hardware%E2%80%94%3C%2FSPAN%3E%3CWBR%20%2F%3E%3CSPAN%3Elike%20routers.%20We%20have%20recently%20discovered%20vulnerabilities%20in%20NETGEAR%20DGN-2200v1%20series%20routers%20that%20can%20compromise%20a%20network%E2%80%99s%20security%E2%80%94%3C%2FSPAN%3E%3CWBR%20%2F%3E%3CSPAN%3Eopening%20the%20gates%20for%20attackers%20to%20roam%20untethered%20through%20an%20entire%20organization.%3C%2FSPAN%3E%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-LABS%20id%3D%22lingo-labs-2503214%22%20slang%3D%22en-US%22%3E%3CLINGO-LABEL%3EAzure%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3ECloud%20Security%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3EIdentity%20Protection%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3EMicrosoft%20365%3C%2FLINGO-LABEL%3E%3C%2FLINGO-LABS%3E
Microsoft

Figure1-extracting-the-filesystem-from-firmware.png

Microsoft finds new NETGEAR firmware vulnerabilities that could lead to identity theft and full syst...

The continuous improvement of security solutions has forced attackers to explore alternative ways to compromise systems. The rising number of firmware attacks and ransomware attacks via VPN devices and other internet-facing systems are examples of attacks initiated outside and below the operating system layer. As these types of attacks become more common, users must look to secure even the single-purpose software that run their hardware—like routers. We have recently discovered vulnerabilities in NETGEAR DGN-2200v1 series routers that can compromise a network’s security—opening the gates for attackers to roam untethered through an entire organization.

0 Replies