A tiny glitch in DrayTek Vigor routers could let hackers seize control remotely. It's a stark reminder that even the smallest bug can open the door to big risks. Have you updated your firmware yet?

https://thedefendopsdiaries.com/cve-2025-10547-critical-remote-code-execution-vulnerability-in-draytek-vigor-routers/

#cve202510547
#draytek
#remotecodeexecution
#routersecurity
#firmwareupdate

New blog post: https://blog.mei-home.net/posts/snmp-exporter/

A short one this time, about my setup for getting some SNMP data provided by my DrayTek VDSL modem into Prometheus.

#HomeLab #Blog #Prometheus #DrayTek

Critical vulnerabilities have been exposed in DrayTek routers, putting devices at risk. Make sure your network is secure by staying updated on the latest cybersecurity threats.

#CyberSecurity #DrayTek #Vulnerability https://zurl.co/E1PhU

#BSI: #DrayTek #Vigor: Mehrere Schwachstellen

Es bestehen mehrere Schwachstellen in DrayTek Vigor Routern. Ein Angreifer kann diese ausnutzen, um Daten zu stehlen, Sicherheitsmaßnahmen zu umgehen, das Gerät zum Absturz zu bringen und Schadcode auszuführen.

https://wid.cert-bund.de/portal/wid/buergercert/details?uuid=735d2ad1-6722-431e-8e5d-3c673ef54837

Jemand hier Ahnung von Mesh-Wifi mit #Draytek Geräten? Konkret ein 2865Lac und 2x AP903 (wired uplink).

Mein Mesh funzt, aber die APs nehmen partout die Configsync vom Router nicht an (außer SSID1).

Jemand eine Idee warum?

🚨 Following reports of widespread DrayTek router reboots, GreyNoise is bringing awareness to in-the-wild activity against multiple known vulnerabilities in DrayTek devices. Read the analysis ⬇️

https://www.greynoise.io/blog/in-the-wild-activity-against-draytek-routers

#GreyNoise #ThreatIntel #Cybersecurity #DrayTek

Hey folks, ready for your daily dose of cyber intel? ☕️

Tuesday's update is out and it's packed with need-to-know updates:

🚨 Critical Next.js Flaw: Authorization bypass vulnerability (CVE-2025-29927) impacting versions before 15.2.3. Upgrade ASAP or block those 'x-middleware-subrequest' headers!

🐜 Weaver Ant's Long Game: Chinese hackers spied on a telco network for four years using compromised Zyxel routers and custom web shells. Talk about persistence!

🐍 VanHelsing RaaS Emerges: A new ransomware player targeting Windows, ARM, ESXi systems. Keep an eye on this one!

☁️ Oracle Cloud Breach Claims: Did they or didn't they? Oracle denies a breach, but a threat actor is claiming otherwise.

🚂 Ukrainian Railway Hit: Cyberattack disrupts online ticket sales amidst crucial transport operations. Resilience is key.

🔄 DrayTek Router Chaos: ISPs are scrambling as DrayTek routers enter reboot loops. Potential vulnerability or buggy update at play.

🤖 AI-Enhanced Cybercrime: Europol warns that organized crime is leveling up with AI, partnering with state-aligned entities.

🛰️ Starlink Intercepted: Thai authorities seize Starlink transmitters headed for Myanmar scam centers. Criminals are finding ways around cut-offs.

🚓 Cybercrime Crackdown: 300+ suspects arrested in Africa for cyber scams. A win for international law enforcement!

🧬 23andMe's Bankruptcy Woes: Privacy advocates raise concerns about DNA data as 23andMe files for bankruptcy. What happens to all that genetic info?

🔒 Pennsylvania County Ransomware: Sensitive data stolen during a ransomware attack. Another reminder to shore up those defenses.

👁️‍🗨️ China Bans Facial Recognition: Consent is now required for facial recognition in China. But are there exceptions for government and AI training?

👉 Dive into the full details here: https://opalsec.io/daily-news-update-tuesday-march-25-2025-australia-melbourne/

Stay vigilant, stay informed, and let's keep the digital world a little safer, one update at a time. 🛡️

#Cyber #CyberSec #Cybersecurity #InfoSec #ThreatIntelligence #ThreatIntel #Ransomware #NextJS #China #AI #Cybercrime #DataBreach #Privacy #Starlink #Europol #Vulnerability #WeaverAnt #VanHelsing #OracleCloud #Ukraine #DrayTek #23andMe #CyberAttack #infosecurity #Privacy #DataPrivacy #AI #InfoSecNews #News