Recently we covered the issues of hardware vulnerabilities and how network devices and other hardware are often missed when it comes to cyber security patching.
Here are two more examples of why you should not miss the hardware…
New Condi malware builds DDoS botnet out of TP-Link AX21 routers (bleepingcomputer.com)
Zyxel warns of critical command injection flaw in NAS devices (bleepingcomputer.com)
…and two examples of vulnerabilities that have been patched by the vendors, but the threat actors are continuing to exploit them because the updates have not been applied:
A (cautionary) tale of two patched bugs, both under exploit • The Register
Clive Catton MSc (Cyber Security) – by-line and other articles