A vulnerability in the baseboard management controllers (BMCs) of Supermicro serverboards – a component that provides “virtually omnipotent control over a server and its contents” – allows an attacker to compromise servers by virtually mounting a USB device of their choosing, remotely over any network, including the internet. The Supermicro vulnerability, disclosed today by firmware security specialists Eclypsium would allow the attacker to boot the machine from a malicious USB image, exfiltrate data over a USB mass storage device, or use a virtual USB Rubber Ducky (a USB device able to craft payloads capable of changing system settings, opening backdoors, retrieving data, initiating reverse shells, etc.

Read full article on CBR – CyberSecurity News