Security Affairs

JUNE 25, 2021

Fortinet has recently fixed a high-severity vulnerability affecting its FortiWeb web application firewall (WAF) that can be exploited by remote attackers to execute arbitrary commands. The vulnerability in the management interface of FortiWeb firewall was discovered by Andrey Medov, from cybersecurity firm Positive Technologies.

Hacking 112

Hacking Firewall Authentication Technology 112

Security Affairs

MAY 21, 2020

Hackers attempted to exploit a zero-day flaw in the Sophos XG firewall to distribute ransomware to Windows machines, but the attack was blocked. It was designed to download payloads intended to exfiltrate XG Firewall-resident data. Sophos was informed of the attacks exploiting the zero-day issue by one of its customers on April 22.

Firewall 133

Firewall Ransomware Passwords VPN 133

Security Affairs

MARCH 10, 2020

Today Microsoft accidentally leaked info about a new wormable vulnerability (CVE-2020-0796) in the Microsoft Server Message Block (SMB) protocol. The issue, tracked as CVE-2020-0796 , is pre- remote code execution vulnerability that resides in the Server Message Block 3.0 CVE-2020-0796 – a "wormable" SMBv3 vulnerability.

Advertising 144

Advertising Firewall Hacking Software 144

Security Affairs

JANUARY 6, 2021

Threat actors are attempting to hack Zyxel devices exploiting the recently disclosed vulnerability CVE-2020-29583, security researchers warn. The Taiwanese vendor Zyxel has recently addressed a critical vulnerability in its firmware, tracked as CVE-2020-29583 , related to the presence of a hardcoded undocumented secret account.

Firmware 111

Firmware Passwords Accountability VPN 111

Security Affairs

JUNE 29, 2020

Palo Alto Networks addressed a critical flaw in the PAN-OS of its next-generation firewalls that could allow attackers to bypass authentication. Palo Alto Networks addressed a critical vulnerability, tracked as CVE-2020-2021 , in the operating system ( PAN?OS SecurityAffairs – hacking, PAN-OS). x base score of 10. .

Firewall 89

Firewall Authentication VPN Advertising 89

Security Affairs

JULY 24, 2020

Cisco fixed CVE-2020-3452 high-severity path traversal flaw in its firewalls that can be exploited by remote attackers to obtain sensitive files from the targeted system. The CVE-2020-3452 flaw was independently reported to Cisco by Mikhail Klyuchnikov of Positive Technologies and Abdulrahman Nour and Ahmed Aboul-Ela from RedForce.

Firewall 104

Firewall Advertising Software Hacking 104

Security Affairs

OCTOBER 4, 2020

HP released a security advisory that includes details for three critical and high severity vulnerabilities, tracked as CVE-2020-6925, CVE-2020-6926, and CVE-2020-6927, that impact the HP Device Manager. Base Score CVE-2020-6925 Weak Cipher All versions of HP Device Manager 7.0

Hacking 131

Hacking Accountability Passwords InfoSec 131

Security Affairs

JUNE 23, 2021

In October last year, experts reported a critical stack-based Buffer Overflow vulnerability, tracked as CVE-2020-5135 , in SonicWall Network Security Appliance (NSA) appliances. “SonicWall physical and virtual firewalls running certain versions of SonicOS may contain a vulnerability where the HTTP server response leaks partial memory.

VPN 86

VPN Firewall Firmware Authentication 86

The Last Watchdog

JANUARY 25, 2021

Thanks to a couple of milestone hacks disclosed at the close of 2020 and start of 2021, they will forever be associated with putting supply-chain vulnerabilities on the map. Similarly, the SolarWinds and Mimecast hacks are precursors of increasingly clever and deeply-damaging hacks of the global supply chain sure to come.

Hacking 228

Hacking B2B Authentication Software 228

Security Affairs

NOVEMBER 29, 2020

Experts found a critical flaw in Real-Time Automation’s (RTA) 499ES EtherNet/IP stack that could allow hacking industrial control systems. Tracked as CVE-2020-25159 , the flaw is rated 9.8 The flaw, tracked as CVE-2020-25159, has received a CVSS score of 9.8 SecurityAffairs – hacking, industrial automation systems).

Hacking 126

Hacking Firmware Internet Internet 126

Security Affairs

AUGUST 4, 2020

NetWalker ransomware operators continue to be very active, according to McAfee the cybercrime gang has earned more than $25 million since March 2020. McAfee researchers believe that the NetWalker ransomware operators continue to be very active, the gang is believed to have earned more than $25 million since March 2020. reads the alert.

Ransomware 96

Ransomware VPN Cybercrime Advertising 96

Webroot

MARCH 29, 2021

A firewall with the right threat intelligence embedded could have blocked communications with the command-and-control server thus preventing a Trojanized Orion install from connecting back to the attackers and stopping them from furthering the attack. Outside of the corporate firewall, it is the Wild West.

Hacking 116

Hacking DNS Firewall Malware 116

Security Affairs

AUGUST 4, 2020

NetWalker ransomware operators continue to be very active, according to McAfee the cybercrime gang has earned more than $25 million since March 2020. McAfee researchers believe that the NetWalker ransomware operators continue to be very active, the gang is believed to have earned more than $25 million since March 2020. reads the alert.

Ransomware 77

Ransomware VPN Cybercrime Advertising 77

Security Affairs

JANUARY 23, 2021

The Hacker News reported in exclusive that the security firm SonicWall was hacked as a result of a coordinated attack on its internal systems. TheHackerNews revealed in an exclusive that the security provider SonicWall was hacked on Friday. SecurityAffairs – hacking, SonicWall). x and Secure Mobile Access ( SMA ).

VPN 130

VPN Firewall Mobile Hacking 130

The Last Watchdog

APRIL 21, 2021

From January through March 2021, TLS concealed 45 percent of the malware Sophos analysts observed circulating on the Internet; that’s double the rate – 23 percent – seen in early 2020, Dan Schiappa, Sophos’ chief product officer, told me in a briefing. In short, TLS helps preserve the integrity of legitimate digital connections.

Malware 214

Malware Firewall Encryption Digital transformation 214

Security Affairs

MAY 15, 2020

Palo Alto Networks addressed tens of vulnerabilities in PAN-OS, the software that runs on the company’s next-generation firewalls. Palo Alto Networks has issued security updates to address tens of vulnerabilities in PAN-OS, the software that runs on the company’s next-generation firewalls. Pierluigi Paganini.

Firewall 103

Firewall Authentication Advertising VPN 103

Security Affairs

NOVEMBER 11, 2021

Exploitation of these together yields remote code execution under the privileges of the affected component on the firewall device.” When ASLR is enabled the exploitation is more difficult, while on virtualized devices (VM-series firewalls) the attack is much easier due to lack of ASLR. Randori said. Pierluigi Paganini.

VPN 105

VPN Firewall Internet Internet 105

SC Magazine

APRIL 21, 2021

Short for “Uncategorized Groups,” UNCs are the label FireEye gives to observed clusters of hacking activities that may (or may not) be related. In September 2020, the company was criticized by security researchers for taking more than two weeks to fix a reported firewall and VPN access flaw that impacted 500,000 organizations and 1.9

Hacking 106

Hacking VPN Media Firewall 106

Security Affairs

JUNE 30, 2020

Cyber Command believes foreign APTs will likely attempt to exploit the recently addressed flaw in Palo Alto Networks’s PAN-OS firewall OS. Recently Palo Alto Network addressed a critical vulnerability , tracked as CVE-2020-2021, affecting the PAN-OS operating system that powers its next-generation firewall.

Firewall 104

Firewall Authentication VPN Hacking 104

Security Affairs

APRIL 3, 2021

THOMPSON posted about the Capital One hack on GitHub, she exploited a misconfigured web application firewall to get access to the data. In 2020, Capital One was fined $80 million by the Office of the Comptroller of the Currency (OCC) for having failed to protect data of its customers. SecurityAffairs – hacking, Capital One).

Hacking 71

Hacking Data breaches Banking Small Business 71

Security Affairs

JULY 9, 2020

Palo Alto Networks addressed a new severe vulnerability in the PAN-OS GlobalProtect portal that impacts PAN next-generation firewalls. Recently Palo Alto Network addressed a critical vulnerability , tracked as CVE-2020-2021, affecting the PAN-OS operating system that powers its next-generation firewall. x base score of 10.

Firewall 88

Firewall Advertising Authentication Hacking 88

Security Through Education

MARCH 3, 2021

According to Forbes , Cyber intelligence firm CYFIRMA, revealed cyberthreats related to coronavirus shot up 600% from February to March of 2020. Malicious actors use emotions in human hacking with a high success rate. Install and maintain anti-virus software, firewalls, and email filters. Still on the fence about attending?

Social Engineering 64

Social Engineering Hacking Engineering Banking 64

Security Affairs

FEBRUARY 9, 2021

The two CSRF vulnerabilities, tracked as CVE-2020-35942, were discovered by researchers at security firm Wordfence. ” Below the vulnerability timeline: December 14, 2020 – The Wordfence Threat Intelligence team finishes researching vulnerabilities in NextGen Gallery. We deploy firewall rules and reach out to Imagely.

Social Engineering 110

Social Engineering Firewall Engineering Phishing 110

Security Affairs

JANUARY 24, 2020

The Danish security researcher Ollypwn has published a proof-of-concept (PoC) denial of service exploit for the CVE-2020-0609 and CVE-2020-0610 vulnerabilities in the Remote Desktop Gateway (RD Gateway) component on Windows Server (2012, 2012 R2, 2016, and 2019) devices. SecurityAffairs – RDP Gateway, hacking).

Advertising 135

Advertising Firewall Education Engineering 135

Security Affairs

APRIL 10, 2023

The vendor also fixed a medium-severity reflected cross-site scripting (XSS) vulnerability tracked as CVE-2020-36692. The company recommends customers replace the appliances with Sophos Firewall. An attacker can exploit the vulnerability to execute JavaScript code in the victim’s browser.

Firewall 91

Firewall Education Media Hacking 91

Security Affairs

JULY 10, 2020

Researchers at Wordfence Threat Intelligence team discovered a reflected cross-site scripting (XSS) vulnerability, tracked as CVE-2020-15299 , in the KingComposer WordPress plugin that potentially impacts 100,000 websites. . We release a firewall rule covering both the patched and unpatched vulnerabilities to our Premium users.

Firewall 87

Firewall Advertising Hacking Information Security 87

Security Affairs

OCTOBER 5, 2020

Unlike other IoT DDoS botnets, Ttint implements 12 remote access functions such as Socket5 proxy for router devices, tampering with router firewall and DNS settings, executing remote custom system commands. ” When the botnet was first detected in 2019, experts noticed it was exploiting the Tenda zero-day flaw tracked as CVE-2020-10987.

IoT 138

IoT Firmware DNS Advertising 138

Security Affairs

JULY 22, 2021

Government experts reported that threat actors are targeting Pulse Secure devices since June 2020 by attempting to exploit multiple know vulnerabilities, including CVE-2019-11510 , CVE-2020-8260 , CVE-2020-8243 , CVE-2021-2289. SecurityAffairs – hacking, SolarWinds). .” Reads the CISA’s alert.

Malware 130

Malware Antivirus Passwords Firewall 130

Security Affairs

OCTOBER 1, 2020

Security researchers from Israeli firm OTORIO found critical vulnerabilities in leading industrial remote access systems that could be exploited by attackers to ban access to industrial production floors, hack into company networks, tamper with data, and even steal sensitive business secrets. Pierluigi Paganini.

Advertising 109

Advertising Authentication VPN Firewall 109

McAfee

DECEMBER 23, 2019

In the largest hack of the year , a former AWS employee exploited a misconfigured Web Application Firewall (WAF) to steal the Social Security numbers, bank account numbers, and other sensitive information of more than 100 million Capital One customers and credit card applicants. Key Actions to Take in 2020 .

Healthcare 54

Healthcare Insurance Artificial Intelligence Authentication 54

Security Affairs

SEPTEMBER 10, 2020

Palo Alto Networks addressed critical and high-severity denial-of-service (DoS) and arbitrary code execution vulnerabilities in its PAN-OS firewall software. Palo Alto Networks has released security updates to patch critical and high-severity denial-of-service (DoS) and arbitrary code execution vulnerabilities in its PAN-OS firewall software.

Firewall 84

Firewall Authentication Advertising Software 84

Krebs on Security

APRIL 7, 2022

Department of Justice (DOJ) says the GRU’s hackers built Cyclops Blink by exploiting previously undocumented security weaknesses in firewalls and routers made by both ASUS and WatchGuard Technologies. billion euros in 2020 alone. A statement from the U.S. SANDWORM AND TRITON. energy facilities. ” HYDRA. . ” HYDRA.

Marketing 247

Marketing Energy and Utilities Malware Ransomware 247

Security Affairs

NOVEMBER 9, 2020

The attacks took place since at least April 2020, threat actors are targeting systems using default configuration (on port 9000) with default admin credentials (admin/admin). In August 2020, unknown attackers leaked internal data from two organizations using a public lifecycle repository tool. SecurityAffairs – hacking, FBI).

Government 118

Government Passwords Firewall Hacking 118

Security Affairs

MARCH 16, 2021

SecurityAffairs – hacking, Mirai). “The attacks are still ongoing at the time of this writing. “The attacks are still ongoing at the time of this writing. If you want to receive the weekly Security Affairs Newsletter for free subscribe here. Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini.

Wireless 125

Wireless IoT DNS VPN 125

The Last Watchdog

MAY 12, 2021

Criminal hacking rings have been hammering away at this latest of a long line of zero-day flaws discovered in a globally distributed system. The pattern is all too familiar: they marshal their hacking infrastructure to take advantage of the window of time when there is a maximum number of vulnerable systems just begging to be hacked.

Ransomware 153

Ransomware Hacking Firewall Digital transformation 153

Security Affairs

SEPTEMBER 25, 2020

The IT giant issued 25 advisories as part of the September 2020 semiannual IOS and IOS XE Software Security Advisory Bundled Publication. The most severe issues addressed by Cisco are: Cisco IOS XE Software Privilege Escalation Vulnerabilities CVE-2020-3141CVE-2020-3425 High 8.8. SecurityAffairs – hacking, DoS).

Software 97

Software DNS Wireless Advertising 97

Security Affairs

SEPTEMBER 26, 2022

A China-linked cyberespionage group, tracked as TA413 (aka LuckyCat) , is exploiting recently disclosed flaws in Sophos Firewall (CVE-2022-1040) and Microsoft Office ( CVE-2022-30190 ) to deploy a never-before-detected backdoor called LOWZERO in attacks aimed at Tibetan entities. SecurityAffairs – hacking, APT). Pierluigi Paganini.

Firewall 104

Firewall Phishing Malware Hacking 104