Articles about firmware

lock

Firmware update blunder bricks hundreds of home 'smart' locks

Hardware biz Lockstate has managed to brick hundreds of internet-connected so-called smart locks on people's front doors with a bad firmware update. The upshot is you can't use the builtin keypad on the devices to unlock the door. Lockstate's smart locks are popular among Airbnb hosts as it allows them to give guests an entry …
Iain Thomson, 11 Aug 2017
Shocked couple scream and clutch their hair

Netgear 'fixes' router by adding phone-home features that record your IP and MAC address

Netgear NightHawk R7000 users who ran last week's firmware upgrade need to check their settings, because the company added a remote data collection feature to the units. A sharp-eyed user posted the T&Cs change to Slashdot. Netgear lumps the slurp as routine diagnostic data. “Such data may include information regarding the …
Orange juice squeezing

Mimosa spiked! Wireless kit has multiple security holes

5G wireless vendor Mimosa Wireless has patched against a bunch of remote code execution, denial-of-service and file disclosure vulnerabilities. The bugs were reported by Ian Ling on Full Disclosure, and apply to firmware used in the company's access points, client products, and backhaul systems. The products' Web interface …
Epson WF-3520 printer

Firmware freakout sends Epson Wi-Fi printers into reboot loop

Epson Wi-Fi-connected printers are repeatedly crashing due to what looks like a combination of a firmware update gone wrong and Google Cloud Print. Reg tipster Terry Bernstein says folks have found that their Epson WF‑3520 printers have been sent into a constant loop of shutting down and restarting over the past day. The …
Shaun Nichols, 7 Dec 2016

GET pwned: Web CCTV cams can be hijacked by single HTTP request

An insecure web server embedded in more than 35 models of internet-connected CCTV cameras leaves devices wide open to hijacking, it is claimed. The gadgets can be commandeered from the other side of the world with a single HTTP GET request before any password authentication checks take place, we're told. If your camera is one …
Sad Android

More Androids carry phone-home firmware

Got a cheap-and-cheerful Android phone from BLU, Infinix, Doogee, Leagoo, IKU, Beeline or Xolo? It might be harbouring some badware in the firmware. The issue affects phones that use an over-the-air update mechanism from Chinese company according to BitSight researcher Dan Dahlberg and Anubis Networks' João Gouveia and Tiago …
Facepalm, photo via Shutterstock

Fax machines' custom Linux allows dial-up hack

Party like it's 1999, phreakers: a bug in Epson multifunction printer firmware creates a vector to networks that don't have their own Internet connection. The exploit requirements are that an attacker can trick the victim into installing malicious firmware, and that the victim is using the device's fax line. The firmware is …

HP Inc's rinky-dink ink stink: Unofficial cartridges, official refills spurned by printer DRM

A Dutch ink seller is accusing HP Inc of deliberately programming its printers to reject refurbished cartridges with a covert firmware update. 123inkt.nl claims that the PC and printer half of the HP split-up planned months ago to have its printers spontaneously spit out third-party and refurbished cartridges from September 13 …
Shaun Nichols, 19 Sep 2016

Don't – don't – install iOS 9.3 on your iPad 2: Upgrade bricks slabs

Updated Apple's latest iOS update, version 9.3, is bricking iPad 2 devices. Reg readers, along with those on Apple's support and discussion boards, say their iPad 2s are unable to fully update to iOS 9.3 due to error messages that, for the time being at least, render the device unusable. The hardware is left in a mid-install limbo, it …
Shaun Nichols, 23 Mar 2016
A Handful of Giant Weta by Mike Locke

Badware in the firmware all over the place

This is really no surprise: embedded system vendors aren't good at carrying out quality assurance on their firmware images, and their embedded Web server software is what you'd expect from something written in the last 20 minutes of Friday afternoon. And it'll be no surprise to The Register's readers that the bugs land in all …

SYNful Knock is no Stuxnet, says researcher

Yet another set of shivers is running up spines at Cisco, with a researcher from Grid32 claiming that “rooting” the company's IOS firmware isn't as hard as people think. The issue of compromised firmware arose in August when the company first warned that its ROMMON firmware images could be replaced with a compromised version …
Microsoft Surface Pro 3

Surface Pro 3 update has so much new stuff for sysadmins, we can't fit it all in one headline

Microsoft has released a significant new firmware update for Surface Pro 3 fondleslabs, the second to arrive this month. As explained in a blog post by Redmond's JC Hornbeck, the latest update to the Surface Pro 3's Unified Extensible Firmware Interface (UEFI) adds new features for enterprise customers but only minor …
Neil McAllister, 27 Mar 2015
Facebook_Samsung re 850 Pro firmware bug

Errant update borks Samsung 850 Pro SSDs

Turning social media against Samsung, a Facebook group has been set up to get the Korean company to fix a firmware update that borks the 850 Pro SSD. This SSD uses brand new 3D NAND and has a 10-year warranty. According to the Facebook group (requires log-in): "A few days ago Samsung published a new firmware update for its …
Chris Mellor, 26 Feb 2015

Buffer overflow reported in UEFI EDK1

A pair of security researchers have found a buffer overflow vulnerability within the implementation of the unified extensible firmware interface (UEFI) within the EDK1 project used in firmware development. Bromium researcher Rafal Wojtczuk and MITRE Corp's Corey Kallenberg said the bug in the FSVariable.c source file was …
Darren Pauli, 7 Jan 2015
bug on keyboard

Firmware update kills Lenovo Home Media Network HDDs. Here's how to resurrect them

A Lenovo firmware update “killed” the cloudy version of the Home Media Network Hard Drive, according to a bunch of customers that took to its support forum to vent their frustration. A firmware update to the catchily-titled version 3.2.8.30031 was recently released - so customers installed it and waited for the product to re- …
Paul Kunert, 3 Dec 2014
Sony PS4

Sony borks fanboi funboxes with dodgy PS4 update

Support staff for Sony's PlayStation 4 have been sent scrambling after users reported issues with the console's latest firmware update. The PS4 2.00 update had promised a handful of new features for Sony's latest console, including the ability to upload YouTube videos of gameplay, share games with friends, and decorate the …
Shaun Nichols, 31 Oct 2014
chalk outline of  human body at crime scene

Watch out! KILLER HP firmware update bricks ProLiant server mobos

HP has warned customers that one of its firmware updates can accidentally brick the network hardware in 100 ProLiant Server models. The Service Pack for ProLiant 2014.02.0 can potentially murder HP Broadcom-based network adapters in G2 to G7-series machines. A server relying on a dead NIC is not much use at all – and may well …
Paul Kunert, 25 Apr 2014

Shuttleworth: Firmware is the universal Trojan

Canonical boss Mark Shuttleworth has called on the world to abandon proprietary firmware code, calling all such code “a threat vector”. In this blog post, Shuttleworth makes the case that manufacturers are simply too incompetent, and attackers (including government security agencies) too competent, for security-by-obscurity in …

Create a news alert about firmware, or find more stories about firmware.

Biting the hand that feeds IT © 1998–2017