China-Aligned MirrorFace Hackers Target EU Diplomats with World Expo 2025 Bait

The China-aligned threat actor known as MirrorFace has been observed targeting a diplomatic organization in the European Union, marking the first time the hacking crew has targeted an entity in the region. "During this attack, the threat actor used as a lure the upcoming World Expo, which will be...

Ukrainian Police Nab Six Tied to CLOP Ransomware

Authorities in Ukraine this week charged six people alleged to be part of the CLOP ransomware group, a cybercriminal gang said to have extorted more than half a billion dollars from victims. Some of CLOPs victims this year alone include Stanford University Medical School, the University of...

Singtel Suffers Zero-Day Cyberattack, Damage Unknown

Singtel, Tier 1 telecom carrier throughout Asia and owner of Australian telco Optus, has been impacted by a software security hole in a third-party file transfer appliance targeted by attackers. Singtel is one of multiple organizations affected by the bug, including an Australian medical research...

SingTel Backdoor Detection (ForgotDoor)

The remote SingTel router may be contain a backdoor. Certain SingTel routers had their administrative web interfaces port-forwarded to public-facing addresses by customer support after users requested customer service. Depending on the configuration, the router may require no credentials, default...

Singapore ISP Leaves 1,000 Routers Open to Attack

Southeast Asian telcom giant Singapore Telecommunications Limited left approximately 1,000 customer routers wide open to a potential attack via an unprotected port. The flub occurred after the region’s largest ISP conducted remote maintenance on affected routers and failed to secure equipment whe...

SingTel / Aztech DSL8900GR(AC) Authentication Bypass

Credit: Cort Date: 5 Aug 2017 CVE: Not assigned Vendor: Aztech https://www.aztech.com / SingTel https://www.singtel.com/ Product: Aztech DSL8900GRAC router Versions Affected: firmware 340.6.1-007 latest available as of 9 Nov 2017 CVSS v3 Base Score: 8.8 AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Fix: No...

CVE-2011-3682: 2WIRE-SINGTEL 2701HGV-E/2700HGV-2/2700HG GATEWAY ROUTER MANAGEMENT AND DIAGNOSTIC CONSOLE VULNERABILITY

CVE-2011-3682: 2WIRE-SINGTEL 2701HGV-E/2700HGV-2/2700HG GATEWAY ROUTER MANAGEMENT AND DIAGNOSTIC CONSOLE VULNERABILITY 1. BACKGROUND AND AFFECTED MODELS/FIRMWARE SingTel provides customized versions of 2Wire gateway routers to its Internet service subscribers for the purpose of accessing the web...

Singtel 2wire routers CSRF

Unchangable account, CSRF...

Singtel 2Wire Hardcoded Password / Cross Site Request Forgery

CVE-2011-3682: 2WIRE-SINGTEL 2701HGV-E/2700HGV-2/2700HG GATEWAY ROUTER MANAGEMENT AND DIAGNOSTIC CONSOLE VULNERABILITY 1. BACKGROUND AND AFFECTED MODELS/FIRMWARE SingTel provides customized versions of 2Wire gateway routers to its Internet service subscribers for the purpose of accessing the web...