Experimental News Clipping Site

Tag: backdoor

  • The Register: Expired Juniper routers find new life – as Chinese spy hubs

    by

    Kurt Seifried
    in

    Source URL: https://www.theregister.com/2025/03/12/china_spy_juniper_routers/ Source: The Register Title: Expired Juniper routers find new life – as Chinese spy hubs Feedly Summary: Fewer than 10 known victims, but Mandiant suspects others compromised, too Chinese spies have for months exploited old Juniper Networks routers, infecting the buggy gear with custom backdoors and gaining root access to the compromised…

  • Cloud Blog: Ghost in the Router: China-Nexus Espionage Actor UNC3886 Targets Juniper Routers

    by

    Kurt Seifried
    in

    Source URL: https://cloud.google.com/blog/topics/threat-intelligence/china-nexus-espionage-targets-juniper-routers/ Source: Cloud Blog Title: Ghost in the Router: China-Nexus Espionage Actor UNC3886 Targets Juniper Routers Feedly Summary: Written by: Lukasz Lamparski, Punsaen Boonyakarn, Shawn Chew, Frank Tse, Jakub Jozwiak, Mathew Potaczek, Logeswaran Nadarajan, Nick Harbour, Mustafa Nasser Introduction In mid 2024, Mandiant discovered threat actors deployed custom backdoors on Juniper Networks’ Junos…

  • Hacker News: Espressif’s Response to Undocumented Commands in ESP32 Bluetooth by Tarlogic

    by

    Kurt Seifried
    in

    Source URL: https://www.espressif.com/en/news/response_esp32_bluetooth Source: Hacker News Title: Espressif’s Response to Undocumented Commands in ESP32 Bluetooth by Tarlogic Feedly Summary: Comments AI Summary and Description: Yes Summary: Espressif addresses concerns regarding claims of a “backdoor” in its ESP32 chips, clarifying that the reported internal debug commands do not pose a security threat. The company emphasizes its…

  • Microsoft Security Blog: New XCSSET malware adds new obfuscation, persistence techniques to infect Xcode projects

    by

    Kurt Seifried
    in

    Source URL: https://www.microsoft.com/en-us/security/blog/2025/03/11/new-xcsset-malware-adds-new-obfuscation-persistence-techniques-to-infect-xcode-projects/ Source: Microsoft Security Blog Title: New XCSSET malware adds new obfuscation, persistence techniques to infect Xcode projects Feedly Summary: Microsoft Threat Intelligence has uncovered a new variant of XCSSET, a sophisticated modular macOS malware that infects Xcode projects, in the wild. Its first known variant since 2022, this latest XCSSET malware features…

  • Hacker News: ESP32 Undocumented Bluetooth Commands: Clearing the Air

    by

    Kurt Seifried
    in

    Source URL: https://developer.espressif.com/blog/2025/03/esp32-bluetooth-clearing-the-air/ Source: Hacker News Title: ESP32 Undocumented Bluetooth Commands: Clearing the Air Feedly Summary: Comments AI Summary and Description: Yes Summary: The text addresses security concerns related to undocumented HCI commands in the ESP32 Bluetooth controller, dismissing claims of a backdoor while outlining the nature of these commands and their implications for security.…

  • The Register: Sidewinder goes nuclear, charts course for maritime mayhem in tactics shift

    by

    Kurt Seifried
    in

    Source URL: https://www.theregister.com/2025/03/10/sidewinder_tactics_shift/ Source: The Register Title: Sidewinder goes nuclear, charts course for maritime mayhem in tactics shift Feedly Summary: Phishing and ancient vulns still do the trick for one of the most prolific groups around Researchers say the Sidewinder offensive cyber crew is starting to target maritime and nuclear organizations.… AI Summary and Description:…

  • Hacker News: The ESP32 "backdoor" that wasn’t

    by

    Kurt Seifried
    in

    Source URL: https://darkmentor.com/blog/esp32_non-backdoor/ Source: Hacker News Title: The ESP32 "backdoor" that wasn’t Feedly Summary: Comments AI Summary and Description: Yes Summary: The text addresses the misconception that the ESP32 Bluetooth chips contain a backdoor, clarifying that the vendor-specific HCI commands discovered are common in Bluetooth technology and do not inherently indicate malicious intent. It discusses…