+1 (786) 621-8580
Firmware News
Aruba Networks Pen Test Finds Multiple Router Vulnerabilities

Aruba Networks Pen Test Finds Multiple Router Vulnerabilities

Chained firmware vulnerabilities gave attackers access to perform remote code execution on Aruba Networks routers. According to security researchers, attackers conducted a series of malicious activities including remote code execution (RCE).

Itai Greenhut and Gal Zror from Aleph Security found a total of eight vulnerabilities in Aruba Instant, the software that allows administrators to configure the settings of Aruba routers.

read more
Hewlett Packard Enterprise Launches Platform to Automatically Verify Hardware Integrity

Hewlett Packard Enterprise Launches Platform to Automatically Verify Hardware Integrity

HPE is addressing the firmware integrity challenge with its new Project Aurora, designed to deliver a cloud-native, zero-trust security to HPE’s edge-to-cloud architecture. Project Aurora will embed within the HPE GreenLake cloud platform building blocks to automatically and continuously verify the integrity of the hardware, firmware, operating systems, platforms, and workloads, including security workloads.

read more
Dell SupportAssist Flaw Allows Hackers to Reflash BIOS

Dell SupportAssist Flaw Allows Hackers to Reflash BIOS

30 million computers were effected by four vulnerabilities in Dell’s SupportAssist remote firmware update utility. This error could let malicious people run arbitrary code in no fewer than 129 different PC and laptops models – while impersonating Dell to remotely upload a tampered BIOS.

read more
Dell Releases Platform Security Update for BIOS Vulnerabilities

Dell Releases Platform Security Update for BIOS Vulnerabilities

Dell releases names of 129 security vulnerabilities affecting BIOSConnect and HTTPS Boot features along with remediations. Dell recommends all customers update to the latest Dell Client BIOS version at the earliest opportunity. For those that cannot apply BIOS updates immediately, Dell has also provided an interim mitigation to disable the BIOSConnect and HTTPS Boot features.

read more