• chevron_right

      Millions of servers inside data centers imperiled by flaws in AMI BMC firmware

      news.movim.eu / ArsTechnica · Thursday, 20 July, 2023 - 19:29 · 1 minute

    Futuristic Data Center Server Room

    Enlarge (credit: Getty Images )

    Two years ago, ransomware crooks breached hardware-maker Gigabyte and dumped more than 112 gigabytes of data that included information from some of its most important supply-chain partners, including Intel and AMD. Now researchers are warning that the leaked booty revealed what could amount to critical zeroday vulnerabilities that could imperil huge swaths of the computing world.

    The vulnerabilities reside inside firmware that Duluth, Georgia-based AMI makes for BMCs, or baseband management controllers. These tiny computers soldered into the motherboard of servers allow cloud centers, and sometimes their customers, to streamline the remote management of vast fleets of computers. They enable administrators to remotely reinstall OSes, install and uninstall apps, and control just about every other aspect of the system—even when it's turned off. BMCs provide what’s known in the industry as “lights-out” system management.

    Lights out forever

    Researchers from security firm Eclypsium analyzed AMI firmware leaked in the 2021 ransomware attack and identified vulnerabilities that had lurked for years. They can be exploited by any local or remote attacker with access to an industry-standard remote-management interface known as Redfish to execute malicious code that will run on every server inside a data center.

    Read 18 remaining paragraphs | Comments

    • chevron_right

      Next ‘MMO?!’ Chapter Out This Saturday (18/09/2021)!

      RandoWis · comics.movim.eu / RandoWis · Wednesday, 15 September, 2021 - 06:57

    Hey everyone!
    It’s been a long time coming, but the next chapter for ‘We Live In An MMO?!’ is out this Saturday!

    I’d also like to announce that I’m going to rename the titles of the MMO chapters to better reflect their releases.
    Meaning;
    Chapter 7 (part 1) = Chapter 7
    Chapter 7 (part 2) = Chapter 8
    Chapter 7 (part 3) = Chapter 9
    Chapter 8 (part 1) = Chapter 10
    Chapter 8 (part 2) = Chapter 11
    etc.. etc…

    Hence, the latest chapter will be re-titled from “Chapter 8 (Part 3)” to “Chapter 12”!

    I’ll be updating the chapters over the next few days to make some changes to maintain consistency, and to re-title the title covers. Just a heads up in case you notice these changes.

    Anyway, thank you so much for your love and support!
    Love you much much and I’ll see you in the next post! ♥

    -RandoWis

    • chevron_right

      I’ve Been Away.

      RandoWis · comics.movim.eu / RandoWis · Tuesday, 27 July, 2021 - 09:00

    Hey everyone.

    How you doin? Good?

    Apologies but MMO and animations have been delayed a little, as I’ve not been able to work on them over the past 5 days.

    I am expected to be discharged later today (27 July 2021), and after a bit of rest, I’d like to go back to making MMO and animations again.

    I’d prefer not to get into the details, but to reduce speculation; my intestines had some troubles again but it’s nothing major. Nonetheless, thanks to the hardwork of the doctors and nurses, the problems have subsided for now.

    In the meantime, please take care of yourselves. Eat healthily and sleep well.

    Love you much much and I’ll see you in the next post.

    -RandoWis

    • chevron_right

      I’m On Pixiv FANBOX!

      RandoWis · comics.movim.eu / RandoWis · Monday, 19 October, 2020 - 05:58


    In case you hadn’t seen the ‘clickbait’ update video earlier, TLDR; I’ve left Patreon and am now officially on Pixiv FANBOX!

    Support me at randowis.fanbox.cc for only ~$1/month and get access to everything I post there! That’s right, EVERYTHING!

    • chevron_right

      Hello Everyone, Goodbye Patreon.

      RandoWis · comics.movim.eu / RandoWis · Tuesday, 13 October, 2020 - 19:22

    Oh no. Clickbait.

    Anyway, below are the screenshots of the entire Patreon post I made regarding Patreon’s policies and why they convinced me to leave the site. The post no longer exists on Patreon (along with every other post there) as I have unlaunched my Patreon page and am currently in the process of getting it completely deactivated. Feel free to read at your own time.

    *1 – ( Rando’s Tweet Disapproving Of Patreon’s Actions )
    *2 – ( Patreon’s Tweet Denying The Anime-Style Ban )
    *3 – ( Waero’s Patreon Post Regarding Patreon’s Guidelines )

    • chevron_right

      I screwed up.

      RandoWis · comics.movim.eu / RandoWis · Thursday, 1 October, 2020 - 12:45

    Hey everyone!

    Just a quick message; I screwed up big time.
    I forgot to pause the billing for this month’s Patreon billing cycle, and by the time I realised, about 100-200 Patrons had already been charged because of my mistake.

    As such I have unlaunched my creator page immediately to prevent anyone else from being wrongly charged.

    If you are one of those Patrons who have been charged for 1st October 2020, I deeply apologise for this oversight of mine and do know that I am currently in the midst of contacting Patreon to see if there’s a way to refund all of you. I’ll make an update once I get a response from Patreon.

    As the RandoWis page has been unlaunched, I cannot make any form of official statements on Patreon itself, hence, I have made this announcement here as well. Thank you for your patience and understanding.

    Much love,
    Rando.

    P.S I’ll be back soon. Apologies for the sudden silence. Thank you.

    • Pe chevron_right

      7G Firewall: September 2020 Update

      pubsub.slavino.sk / perishablepress · Wednesday, 9 September, 2020 - 21:30 edit

    Pleased to announce that the 7G Firewall is updated to version 1.3 (September 3rd, 2020). Now available for download, 100% free and open-source as always. 7G Firewall: summary of changes Changes to 7G Firewall include: Reorders some rules within the firewall Replaces L flag with END for logging rules Renames log files and updates logging rules Removes logging loop-protection rules Adds some new patterns to the firewall Removes some patterns from the firewall This update was big focus on better […]

    Značky: #Rozne, #apache, #firewall, #.htaccess, #Security, #nG, #mod_rewrite, #updates, #blacklist