Hot Topics

Supermicro

Supermicro IPMI Firmware Vulnerabilities Disclosed

| | BMC (Baseboard Management Controller), Cross-Site Scripting (XSS), Cybersecurity, Cybersecurity News, Firmware Vulnerabilities, IPMI, Mitigation Measures, patching, Privilege Escalation, Remote Exploits, Security Flaws, Server Management, Supermicro, Vulnerability Disclosure
A number of security flaws have recently been discovered in Supermicro’s baseboard management controllers (BMCs). These Supermicro IPMI firmware vulnerabilities in the Intelligent Platform Management Interface (IPMI) pose serious dangers, including privilege ...
TuxCare

The “Big Hack” That Actually Happened – Chinese Military Implicated in Equifax Breach

| | Application Security, Equifax, Equifax breach, FEATURED, News and Views, Open Source Security, Supermicro, Vulnerabilities
In October 2018, Bloomberg published an article titled “The Big Hack: How China Used a Tiny Chip to Infiltrate U.S. Companies,” that sent shockwaves around the world. The implication - Chinese spies ...
Sonatype Blog
Equifax Data Breach Details Released, More Google+ API Bugs, Supermicro Strikes Back - WB47

Equifax Data Breach Details Released, More Google+ API Bugs, Supermicro Strikes Back – WB47

| | amazon, Apple, Bloomberg, Cybersecurity, Data breach, Equifax, google, Podcast, Podcast Episodes, Privacy, Supermicro, Weekly Blaze Podcast
Watch this episode on our YouTube channel! This is your Shared Security Weekly Blaze for December 17th 2018 with your host, Tom Eston. In this week’s episode: Equifax data breach details released, ...
Shared Security
Caliptra semiconductor Ukraine cybersecurity Windows remote code printers Bugcrowd

Guarding Against Backdoors and Malicious Hardware

| | backdoor, chipsets, Hardware Security, Supermicro
In a post-Supermicro-scoop world, it’s important for security teams to review the basics on detecting and guarding against hardware backdoors. Malicious software is relatively easy to find, but what if your actual ...
Security Boulevard

Fortnite Scams, Google Search Privacy, Bloomberg SuperMicro Controversy – #81

| | Bloomberg, china, Cybersecurity, DuckDuckGo, Fortnite, google, Podcast, Podcast Episodes, Privacy, Startpage, Supermicro
This is the 81st episode of the Shared Security Podcast sponsored by Silent Pocket and Edgewise Networks was hosted by Tom Eston and Scott Wright recorded on October 29, 2018. Listen to ...
Shared Security
Supply-chain-chip

Demystifying the Hardware Supply Chain for Smartphones

| | Bloomberg Businessweek, china, Smartphone Vulnerabilities, Supermicro, Supply Chain Attacks, Supply Chain Risk, supply chain security
Earlier this month, a controversial report in Bloomberg Businessweek ignited a larger conversation about a topic that has long been a concern of security professionals: the hacking of the hardware supply chain ...
Be Aware

10/8/18: Dtex, Insider Threat, Privacy News: Dtex Earns Leadership, Product Awards; Insider Compromises French Law Enforcement Agency; The Big Hack

| | amazon, Apple, aws, Ben Brody, Bloomberg, Catalin Cimpanu, china, Cybersecurity, DOJ, Dtex, FBI, Golden Bridge Awards, Infosecurity Magazine, insider threat, Jordan Robertson, Naomi Nix, Phishing, SecuritySerious, State of California Attorney General, Supermicro, United States Department of Justice, ZDnet, zero-day
Last week, awards organizations based in the United Stated and United Kingdom recognized Dtex for its product excellence and leadership. The Golden Bridge Awards honored the Dtex Advanced User Behavior Platform for ...
Dtex Systems