Massive DDoS Attacks Now Possible in Thousand of Konica Minolta Printers.

jim · 2023-04-30T15:29:18-04:00

Massive DDoS attacks possible with new SLP vulnerability. BleepingComputer reports that significant distributed denial-of-service attacks with 2,200 times amplification could be launched with the exploitation of a new vulnerability in the Service Location Protocol, tracked as CVE-2023-29552. Attackers have been leveraging the vulnerability to increase the UDP response size of targeted servers to a maximum amplification factor of 2,200X, according to a report from BitSight, which jointly discovered the bug with Curesec. "This extremely high amplification factor allows for an under-resourced threat actor to have a significant impact on a targeted network and/or server via a reflective DoS amplification attack," said BitSight. Nearly 54,000 SLP instances, including VMware ESXi Hypervisors, IBM Integrated Management Modules, Planex routers, and Konica Minolta printers, which are being used across more than 2,000 organizations around the world could be compromised using the flaw. The U.S., Canada, Japan, France, Germany, and the U.K., had the most vulnerable SLP instances, with numerous Fortune 500 firms in the technology, healthcare, telecommunications, finance, hospitality, insurance, and transportation sectors being most impacted, the report showed. https://www.scmagazine.com/brief/vulnerability-management/massive-ddos-attacks-possible-with-new-slp-vulnerability

Tonernews.com, April 30, 2023. USA

This topic is empty.

Viewing 1 post (of 1 total)

Author

Posts
#398551

jim
Keymaster

Massive DDoS attacks possible with new SLP vulnerability. BleepingComputer reports that significant distributed denial-of-service attacks with 2,200 times amplification could be launched with the exploitation of a new vulnerability in the Service Location Protocol, tracked as CVE-2023-29552.

Attackers have been leveraging the vulnerability to increase the UDP response size of targeted servers to a maximum amplification factor of 2,200X, according to a report from BitSight, which jointly discovered the bug with Curesec.

“This extremely high amplification factor allows for an under-resourced threat actor to have a significant impact on a targeted network and/or server via a reflective DoS amplification attack,” said BitSight.

Nearly 54,000 SLP instances, including VMware ESXi Hypervisors, IBM Integrated Management Modules, Planex routers, and Konica Minolta printers, which are being used across more than 2,000 organizations around the world could be compromised using the flaw.

The U.S., Canada, Japan, France, Germany, and the U.K., had the most vulnerable SLP instances, with numerous Fortune 500 firms in the technology, healthcare, telecommunications, finance, hospitality, insurance, and transportation sectors being most impacted, the report showed.

https://www.scmagazine.com/brief/vulnerability-management/massive-ddos-attacks-possible-with-new-slp-vulnerability
Author

April 30, 2023 at 3:29 PM

Viewing 1 post (of 1 total)

You must be logged in to reply to this topic.

The information on this site has been included in good faith for general informational purposes only. It is not intended to amount to advice on which you should rely, and we give no representation, warranty, or guarantee, whether express or implied as to its accuracy or completeness. You must obtain professional or specialist advice before taking, or refraining from, any action based on the content on our site.