• Articles
    • Editorial Articles
    • Research Articles
    • WatchGuard Articles
  • Daily Security Bytes
  • The 443 Podcast
  • Threat Landscape
  • About
    • About Us
    • Contact Us
    • Contribute to Secplicity

Secplicity - Security Simplified

Powered by WatchGuard Technologies

UPnP Flaw Helps Pop IoT – Daily Security Byte EP. 186

December 4, 2015 By Corey Nachreiner

One of WatchGuard's partners, Trend Micro, found that many devices are still using an older version of a common Universal Plug-n-Play (UPnP) library that suffers from a very serious vulnerability. This new research is very similar HD Moore's UPnP disclosures a few years ago; the difference being Trend Micro specifically found the issue affecting many Internet of Things (IoT) … [Read more...]

WatchGuard Security Week in Review: Episode 50 – UPnP Pwnage

February 1, 2013 By Corey Nachreiner

UPnP Pwnage and Hacked Journalists This week is rife with security news. If you want the quick highlights, you've come to the right place. Today's video covers a few Yahoo XSS vulnerabilities, some serious UPnP security flaws, and the alleged China-based hack of the New York Times. Watch the video below for details. Also, if you are interested in some other stories I didn't … [Read more...]

H.D. Moore Unveils Major UPnP Security Vulnerabilities

January 31, 2013 By Corey Nachreiner

This week, H.D Moore, the creator of Metasploit, and now CSO of Rapid7, released a detailed report unveiling his team's months-long research into the security of the Universal Plug and Play (UPnP) protocol. If you haven't heard of it, Universal Plug and Play (UPnP) is a set of networking protocols intended to allow network devices to automatically find one another and then … [Read more...]

The 443 Podcast

A weekly podcast featuring the leading white-hat hackers and security researchers. Listen Now
the 443 podcast

Threat Landscape

Filter and view Firebox Feed data by type of attack, region, country, and date range. View Now
threat landscape

Top Posts

  • The Hack of the Decade
  • Understanding Fileless Malware Outside the Network 
  • 11 High Severity Vulnerabilities found in Nvidia Software
  • Zyxel Adds a Built-in User With A Easy To Find Password

Email Newsletter

Sign up to get the latest security news and threat analysis delivered straight to your inbox

By signing up you agree to our Privacy Policy.


The views and opinions expressed on this website are those of the authors and do not necessarily reflect the policy or position of WatchGuard Technologies.

Stay in Touch

Recent Posts

  • 11 High Severity Vulnerabilities found in Nvidia Software
  • Zyxel Adds a Built-in User With A Easy To Find Password
  • The Hack of the Decade
  • Channel Partner Insight Names WatchGuardONE Security Partner Program of the Year
  • Understanding Fileless Malware Outside the Network 
View All

Search

Archives

Copyright © 2021 WatchGuard Technologies · Privacy Policy · Terms of Use