Security Affairs

MAY 3, 2021

Pulse Secure has fixed a zero-day flaw in the Pulse Connect Secure (PCS) SSL VPN appliance that threat actors are actively exploiting in the wild. that allows remote authenticated attackers to execute arbitrary code as the root user via maliciously crafted meeting room. reads the report published by FireEye. Pierluigi Paganini.

VPN 108

VPN Government Authentication Cybersecurity 108

CSO Magazine

APRIL 20, 2021

Over the past few months, several cyberespionage groups, including one believed to be tied to the Chinese government, have been breaking into the networks of organizations from the United States and Europe by exploiting vulnerabilities in VPN appliances from zero-trust access provider Pulse Secure. Sign up for CSO newsletters. ].

VPN 98

VPN CSO Hacking Authentication 98

Krebs on Security

AUGUST 21, 2020

The advisory came less than 24 hours after KrebsOnSecurity published an in-depth look at a crime group offering a service that people can hire to steal VPN credentials and other sensitive data from employees working remotely during the Coronavirus pandemic. authenticate the phone call before sensitive information can be discussed.

VPN 356

VPN Social Engineering Authentication Engineering 356

Security Affairs

JUNE 23, 2021

A critical vulnerability, tracked as CVE-2021-20019 , in SonicWall VPN appliances was only partially patched last year and could allow a remote attacker to steal sensitive data. The flaw resides in the HTTP/HTTPS service used for product management as well as SSL VPN remote access. “An reads the analysis published by Tripwire.

VPN 85

VPN Firewall Firmware Authentication 85

Krebs on Security

FEBRUARY 26, 2023

But we do know the March 2020 attack was precipitated by a spear-phishing attack against a GoDaddy employee. GoDaddy described the incident at the time in general terms as a social engineering attack, but one of its customers affected by that March 2020 breach actually spoke to one of the hackers involved.

Hacking 258

Hacking Social Engineering Phishing Scams 258

Thales Cloud Protection & Licensing

OCTOBER 28, 2021

Trick or Treat: The Choice is Yours with Multifactor Authentication. Whether you want the ‘trick’ of a malevolent threat actor infiltrating your network by exploiting a compromised password or the ‘treat’ from the peace of mind associated with multifactor authentication, the choice is yours. Fri, 10/29/2021 - 05:29.

Authentication 71

Authentication VPN Passwords Accountability 71

Krebs on Security

NOVEMBER 21, 2020

2019 that wasn’t discovered until April 2020. In August 2020, KrebsOnSecurity warned about a marked increase in large corporations being targeted in sophisticated voice phishing or “vishing” scams. Restrict VPN access hours, where applicable, to mitigate access outside of allowed times.

Cryptocurrency 363

Cryptocurrency VPN Scams Social Engineering 363

Duo's Security Blog

NOVEMBER 10, 2020

The time has come where we analyze authentication data and produce our wildly popular Duo Trusted Access Report. The 2020 Duo Trusted Access Report details the security state of thousands of the world’s largest and fastest-growing organizations. Tweet to us at @DuoSec Download the free 2020 Trusted Access Report today!

Authentication 60

Authentication CISO VPN Technology 60

The Hacker News

AUGUST 9, 2021

Pulse Secure has shipped a fix for a critical post-authentication remote code execution (RCE) vulnerability in its Connect Secure virtual private network (VPN) appliances to address an incomplete patch for an actively exploited flaw it previously resolved in October 2020.

VPN 106

VPN Authentication 106

Threatpost

OCTOBER 14, 2020

The CVE-2020-5135 stack-based buffer overflow security vulnerability is trivial to exploit, without logging in.

VPN 122

VPN Authentication Network Security 122

Troy Hunt

APRIL 6, 2020

The Ultimate Tor Browser Guide for 2020 The Best VPN for China 2020 How to know if someone is watching you on your camera 5 Ways to Stay Protected from Advanced Phishing Threats How to Access Windows Remote Desktop Over the Internet What We Need To Know About Bluetooth Security The Best Internet Browser for 2020 Two-Factor Authentication: ?What

Advertising 296

Advertising VPN Internet Internet 296

Security Affairs

JANUARY 23, 2021

The company was targeted with a coordinated attack on its internal systems, threat actors exploited zero-day vulnerabilities in their VPN solutions, such as NetExtender VPN client version 10.x Below the list of affected products shared by THN: NetExtender VPN client version 10.x x and Secure Mobile Access ( SMA ).

VPN 131

VPN Firewall Mobile Hacking 131

Security Affairs

APRIL 21, 2024

The cybersecurity researchers observed threat actors obtaining initial access to organizations through a virtual private network (VPN) service without multifactor authentication (MFA) configured. The attackers mostly used Cisco vulnerabilities CVE-2020-3259 and CVE-2023-20269.

Ransomware 106

Ransomware Encryption Antivirus VPN 106

Security Affairs

JULY 16, 2020

Cisco addresses a critical remote code execution (RCE), authentication bypass, and static default credential flaws that could lead to full router takeover. The Cisco Product Security Incident Response Team (PSIRT) confirmed that it is not aware of any public announcements or malicious use of the above vulnerabilities.

Firewall 91

Firewall Small Business Wireless Authentication 91

Security Affairs

JUNE 29, 2020

Palo Alto Networks addressed a critical flaw in the PAN-OS of its next-generation firewalls that could allow attackers to bypass authentication. Palo Alto Networks addressed a critical vulnerability, tracked as CVE-2020-2021 , in the operating system ( PAN?OS x base score of 10. . x base score of 10.

Firewall 90

Firewall Authentication VPN Advertising 90

Malwarebytes

APRIL 23, 2021

Pulse Secure VPN. CISA found that the attacker(s) had access to the enterprise’s network for nearly a year, between March 2020 and February 2021. According to its investigation, the threat actor connected to the entity’s network via a Pulse Secure Virtual Private Network (VPN) appliance. CVE-2020-10148.

Malware 94

Malware VPN Authentication Passwords 94

Security Affairs

AUGUST 2, 2020

“As of June 2020, the FBI has received notifications of Netwalker ransomware attacks on U.S. “Netwalker became widely recognized in March 2020, after intrusions on an Australian transportation and logistics company and a U.S. Consider installing and using a VPN. Use two-factor authentication with strong passwords.

Ransomware 132

Ransomware VPN Advertising Government 132

Security Affairs

JULY 8, 2021

CVE Identifier CWE Identifier CVSS score (Severity) Remediation CVE-2020-7388 CWE-290 : Unauthenticated Command Execution Bypass by Spoofing in AdxAdmin 10.0 Critical) Update available CVE-2020-7387 CWE-200 : Exposure of Sensitive Information to an Unauthorized Actor in AdxAdmin 5.3 ” reads the post published by Rapid7.

Hacking 108

Hacking Authentication VPN Software 108

Security Affairs

AUGUST 26, 2021

Threat actors are targeting Pulse Connect Secure VPN devices exploiting multiple flaws, including CVE-2021-22893 and CVE-2021-22937. that allows remote authenticated attackers to execute arbitrary code as the root user via maliciously crafted meeting room. One file is designed to intercept certificate-based multi-factor authentication.

Malware 129

Malware VPN Authentication Hacking 129

DoublePulsar

JANUARY 4, 2020

it allows people without valid usernames and passwords to remotely connect to the corporate network the device is supposed to protect, turn off multi-factor authentication controls, remotely view logs and cached passwords in plain text (including Active Directory account passwords). That vulnerability is incredibly bad?—?it

VPN 52

VPN Ransomware Passwords Internet 52

Security Affairs

DECEMBER 6, 2020

Kopter Group is Switzerland-based company that was founded in 2007 that was acquired by Leonardo in April 2020. LockBit ransomware operators told ZDNet that they have accessed the network of the helicopter maker via a VPN appliance that was poorly protected. ” reported ZDNet.

Ransomware 98

Ransomware VPN Encryption Authentication 98

Google Security

APRIL 15, 2021

According to eMarketer , in 2020 users spent over three and a half hours per day using mobile apps. We’ve seen early interest from Internet of Things (IoT) and virtual private network (VPN) developers, however the standard is appropriate for any cloud connected service such as social, messaging, fitness, or productivity apps.

Mobile 143

Mobile VPN IoT Internet 143

Security Affairs

MAY 15, 2020

One of the most severe vulnerabilities, tracked as CVE-2020-2018 , is an authentication bypass vulnerability in the Panorama context switching feature. This vulnerability does not impact Panorama configured with custom certificates authentication for communication between Panorama and managed devices.

Firewall 103

Firewall Authentication Advertising VPN 103

CyberSecurity Insiders

APRIL 16, 2021

Interestingly, people seem to have become more aware of the need for a secure workplace in 2020. Nexor, a service provider in the cybersecurity space, asserts that Google searches for ‘cyber defence’ surged by 126% in the first quarter of 2020. Security through a VPN. Password managers and two-factor authentication.

Cybersecurity 106

Cybersecurity Password Management Passwords VPN 106

Security Affairs

JUNE 30, 2020

Recently Palo Alto Network addressed a critical vulnerability , tracked as CVE-2020-2021, affecting the PAN-OS operating system that powers its next-generation firewall. The flaw could allow unauthenticated network-based attackers to bypass authentication, it has has been rated as critical severity and received a CVSS 3.x

Firewall 103

Firewall Authentication VPN Hacking 103

SC Magazine

FEBRUARY 17, 2021

Growing security risks have prompted companies to move away from virtual private networks (VPNs) in favor of a zero-trust model. Most organizations, 72 percent, plan to ditch VPNs , according to Zscaler’s 2021 VPN Risk Report , which found that 67 percent of organizations are considering remote access alternatives.

VPN 135

VPN Social Engineering Authentication Architecture 135

Approachable Cyber Threats

OCTOBER 16, 2020

During the COVID-19 pandemic for example, you may use a Virtual Private Network (VPN) to connect to your organization’s network as if you’re sitting in the office, or you might use Remote Desktop Protocol (RDP) to connect to your computer that’s now collecting dust on your office desk. VPNs continue to be problematic as well.

Ransomware 98

Ransomware VPN Internet Internet 98

Security Affairs

OCTOBER 1, 2020

The experts found six vulnerabilities in B&R Automation’s SiteManager and GateManager ( CVE-2020-11641 , CVE-2020-11642 , CVE-2020-11643 , CVE-2020-11644 , CVE-2020-11645 , CVE-2020-11646 ) that could potentially disrupt operations. ” reads the advisory published by the company.

Advertising 109

Advertising Authentication VPN Firewall 109

Security Affairs

JUNE 8, 2022

“Upon gaining an initial foothold into a telecommunications organization or network service provider, PRC state-sponsored cyber actors have identified critical users and infrastructure including systems critical to maintaining the security of authentication, authorization, and accounting. Enforce MFA on all VPN connections [ D3-MFA ].

Telecommunications 96

Telecommunications Authentication Passwords Accountability 96

Security Affairs

AUGUST 21, 2020

The campaign is worrisome due to the ongoing COVID-19 pandemic that caused the spike in the number of employees working from home and the increase in the use of corporate VPN and elimination of in-person verification. Restrict VPN access hours, where applicable, to mitigate access outside of allowed times.

Social Engineering 119

Social Engineering VPN Phishing Authentication 119

Security Affairs

AUGUST 28, 2020

The first issue, tracked as CVE-2020-3517, is a DoS issue that resides in the Fabric Services component. The second issue, tracked as CVE-2020-3415, is a remote code execution flaw in the Data Management Engine (DME) of NX-OS software. Another DoS issue (CVE-2020-3398) in BGP MVPN affects Nexus 7000 series switches too.

Software 124

Software Risk Advertising Authentication 124

SecureList

NOVEMBER 23, 2023

VPN services on the rise A VPN creates an encrypted tunnel that effectively conceals user traffic from internet service providers and potential snoopers, thus reducing the number of parties that can access user data even on public Wi-Fi.

VPN 90

VPN Scams Education Internet 90

Security Affairs

NOVEMBER 23, 2020

FBI is warning private industry partners of a surge in Ragnar Locker ransomware activity following a confirmed attack from April 2020. Federal Bureau of Investigation (FBI) issued a flash alert (MU-000140-MW) to warn private industry partners of an increase of the Ragnar Locker ransomware activity following a confirmed attack from April 2020.

Ransomware 145

Ransomware Encryption VPN Backups 145

Security Affairs

AUGUST 17, 2021

An authenticated attacker could execute arbitrary commands as the root user on the underlying system via the SAML server configuration page. Experts pointed out that the flaw could be chained with an authentication bypass flaw that could allow an attacker. The vulnerability impacts Fortinet FortiWeb versions 6.3.11

Authentication 99

Authentication VPN Internet Internet 99

Duo's Security Blog

MARCH 25, 2022

Problem: The Traditional VPN Is No Longer Enough Since the 1990s, virtual private networks (VPNs) have been well-suited for the purpose they were built for – to grant employees temporary access to corporate networks and resources when they weren't logging in from an office.

VPN 76

VPN Architecture Authentication Software 76

Security Affairs

JUNE 4, 2021

This includes an authentication by-pass vulnerability that can allow an unauthenticated user to perform remote arbitrary file execution on the Pulse Connect Secure gateway. The vendor also released a tool that can scan Pulse Secure VPN servers for signs of compromise for CVE-2021-22893 or other previous vulnerabilities.

VPN 77

VPN Government Hacking Authentication 77

SecureWorld News

DECEMBER 8, 2021

The cybersecurity firm noted seven tactics the group has recently used: "Compromise of multiple technology solutions, services, and reseller companies since 2020.". Abuse of multi-factor authentication leveraging 'push' notifications on smartphones.". Use of a new bespoke downloader we call CEELOADER.".

VPN 73

VPN Authentication Mobile Internet 73