2020, Firewall, Information Security and VPN

Expert found a secret backdoor in Zyxel firewall and VPN

Security Affairs

JANUARY 1, 2021

Zyxel addressed a critical flaw in its firmware, tracked as CVE-2020-29583 , related to the presence of a hardcoded undocumented secret account. The vulnerability, tracked as CVE-2020-29583 received a CVSS score of 7.8, ” The CVE-2020-29583 flaw affects the firmware version 4.60 that is used by multiple Zyxel devices.

Firewall

Firewall VPN Firmware Passwords

Almost 800,000 SonicWall VPN appliances online are vulnerable to CVE-2020-5135

Security Affairs

OCTOBER 16, 2020

The Tripwire VERT security team spotted almost 800,000 SonicWall VPN appliances exposed online that are vulnerable to the CVE-2020-5135 RCE flaw. Security experts from the Tripwire VERT security team have discovered 795,357 SonicWall VPN appliances that were exposed online that are vulnerable to the CVE-2020-5135 RCE flaw.

VPN

VPN Firewall Advertising Internet

CVE-2021-3064: Easily exploitable RCE flaw in Palo Alto Networks in GlobalProtect VPN

Security Affairs

NOVEMBER 11, 2021

Palo Alto Networks warns of an easy exploitable Remote Code Execution vulnerability in its GlobalProtect VPN product. Exploitation of these together yields remote code execution under the privileges of the affected component on the firewall device.” 2020-11-19: Randori discovered the buffer overflow vulnerability.

VPN

VPN Firewall Internet Internet

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

SonicWall finally fixed a flaw resulting from a partially patched 2020 zero-day

Security Affairs

JUNE 23, 2021

A critical vulnerability, tracked as CVE-2021-20019 , in SonicWall VPN appliances was only partially patched last year and could allow a remote attacker to steal sensitive data. The flaw resides in the HTTP/HTTPS service used for product management as well as SSL VPN remote access. “An 6.5.1.12, 6.0.5.3, SonicOSv 6.5.4.v

VPN

VPN Firewall Firmware Authentication

Cisco fixes 5 critical flaws that could allow router firewall takeover

Security Affairs

JULY 16, 2020

Cisco has released security updates to address critical remote code execution (RCE), authentication bypass, and static default credential vulnerabilities affecting multiple router and firewall devices. The post Cisco fixes 5 critical flaws that could allow router firewall takeover appeared first on Security Affairs.

Firewall

Firewall Small Business Wireless Authentication

Palo Alto Networks fixes a critical flaw in firewall PAN-OS

Security Affairs

JUNE 29, 2020

Palo Alto Networks addressed a critical flaw in the PAN-OS of its next-generation firewalls that could allow attackers to bypass authentication. Palo Alto Networks addressed a critical vulnerability, tracked as CVE-2020-2021 , in the operating system ( PAN?OS x base score of 10. . x base score of 10. Pierluigi Paganini.

Firewall

Firewall Authentication VPN Advertising

Recently disclosed CVE-2020-29583 Zyxel flaw already under opportunistic attack

Security Affairs

JANUARY 6, 2021

Threat actors are attempting to hack Zyxel devices exploiting the recently disclosed vulnerability CVE-2020-29583, security researchers warn. The Taiwanese vendor Zyxel has recently addressed a critical vulnerability in its firmware, tracked as CVE-2020-29583 , related to the presence of a hardcoded undocumented secret account.

Firmware

Firmware Passwords Accountability VPN

Security firm SonicWall was victim of a coordinated attack

Security Affairs

JANUARY 23, 2021

The company was targeted with a coordinated attack on its internal systems, threat actors exploited zero-day vulnerabilities in their VPN solutions, such as NetExtender VPN client version 10.x x and Secure Mobile Access ( SMA ). Below the list of affected products shared by THN: NetExtender VPN client version 10.x

VPN

VPN Firewall Mobile Hacking

NetWalker ransomware operators have made $25 million since March 2020

Security Affairs

AUGUST 4, 2020

NetWalker ransomware operators continue to be very active, according to McAfee the cybercrime gang has earned more than $25 million since March 2020. McAfee researchers believe that the NetWalker ransomware operators continue to be very active, the gang is believed to have earned more than $25 million since March 2020. reads the alert.

Ransomware

Ransomware VPN Cybercrime Advertising

Palo Alto Networks addresses tens of serious issues in PAN-OS

Security Affairs

MAY 15, 2020

Palo Alto Networks addressed tens of vulnerabilities in PAN-OS, the software that runs on the company’s next-generation firewalls. Palo Alto Networks has issued security updates to address tens of vulnerabilities in PAN-OS, the software that runs on the company’s next-generation firewalls.

Firewall

Firewall Authentication Advertising VPN

APTs will exploit Palo Alto Networks’s PAN-OS flaw soon, US Cyber Command says

Security Affairs

JUNE 30, 2020

Cyber Command believes foreign APTs will likely attempt to exploit the recently addressed flaw in Palo Alto Networks’s PAN-OS firewall OS. Recently Palo Alto Network addressed a critical vulnerability , tracked as CVE-2020-2021, affecting the PAN-OS operating system that powers its next-generation firewall.

Firewall

Firewall Authentication VPN Hacking

Flaws in leading industrial remote access systems allow disruption of operations

Security Affairs

OCTOBER 1, 2020

The experts found six vulnerabilities in B&R Automation’s SiteManager and GateManager ( CVE-2020-11641 , CVE-2020-11642 , CVE-2020-11643 , CVE-2020-11644 , CVE-2020-11645 , CVE-2020-11646 ) that could potentially disrupt operations. ” reads the advisory published by the company.

Advertising

Advertising Authentication VPN Firewall

FBI and CISA warn of attacks by Rhysida ransomware gang

Security Affairs

NOVEMBER 15, 2023

VPNs, RDPs) to gain initial access to the target network and maintain persistence. The group relied on compromised credentials to authenticate to internal VPN access points. 1 ] secretsdump A script used to extract credentials and other confidential information from a system.

Ransomware

Ransomware Manufacturing Healthcare Education

Security Affairs newsletter Round 295

Security Affairs

JANUARY 3, 2021

If you want to receive the weekly Security Affairs Newsletter for free subscribe here. The post Security Affairs newsletter Round 295 appeared first on Security Affairs. Pierluigi Paganini. SecurityAffairs – hacking, Vermont Medical Center).

Data breaches

Data breaches Mobile VPN Firewall

A critical flaw in industrial automation systems opens to remote hack

Security Affairs

NOVEMBER 29, 2020

Tracked as CVE-2020-25159 , the flaw is rated 9.8 ” reads the security advisory published by Claroty. The flaw, tracked as CVE-2020-25159, has received a CVSS score of 9.8 Brizinov reported the stack overflow issue to the US agency CISA that published a security advisory.

Hacking

Hacking Firmware Internet Internet

Security Affairs newsletter Round 235

Security Affairs

OCTOBER 13, 2019

Hi folk, let me inform you that I suspended the newsletter service, anyway I’ll continue to provide you a list of published posts every week through the blog. Iran-linked Phosphorus group hit a 2020 presidential campaign. UK NCSC agency warns of APTs exploiting Enterprise VPN vulnerabilities.

VPN

VPN Spyware Data breaches Advertising

Experts disclose tens of flaws in Zyxel Cloud CNM SecuManager, includes dangerous backdoors

Security Affairs

MARCH 12, 2020

Security researchers Pierre Kim and Alexandre Torres have discovered several vulnerabilities Zyxel Cloud CNM SecuManager software that could expose users to cyber attacks. Also, there is no firewall by default.” The experts have discovered 16 vulnerabilities, including default credentials to insecure memory storage and backdoors.

Accountability

Accountability Advertising Software Authentication

5 Components of the Kubernetes Control Plane that Demand Special Attention in Your Security Strategy

Security Affairs

OCTOBER 30, 2020

Organizations and security incidents in Kubernetes environments, these are 5 key components of the control plane that demand special attention. Organizations are no strangers to security incidents in their Kubernetes environments. How to secure it. For information on how to secure that part of a Kubernetes cluster, click here.

Advertising

Advertising Internet Internet VPN

Attacks against Denmark ‘s energy sector were not carried out by Russia-linked APT

Security Affairs

JANUARY 14, 2024

The attackers exploited zero-day vulnerabilities in Zyxel firewalls used by many critical infrastructure operators in Denmark. On April 25, 2023, Zyxel disclosed a critical vulnerability (CVSS score 9.8), tracked as CVE-2023-28771 , in a number of their firewalls. through 4.73, VPN series firmware versions 4.60 through 5.35.

Firewall

Firewall Firmware Cyber Attacks VPN

The Biggest Lessons about Vulnerabilities at RSAC 2021

eSecurity Planet

MAY 28, 2021

As of now, the information security industry is at the outset of implementing SBOM for software products. Whether it’s a VPN , firewall , or remote access server, unauthorized entry via network gateways is a problem. This reality makes it imperative that network administrators are active patchers to fill in the gap.

Software

Software Firmware DNS VPN

How to Save Your Organization $9.05 Million with a Nominal Investment in Cybersecurity

CyberSecurity Insiders

SEPTEMBER 3, 2021

million in 2020 and more than twice the global average. Colonial Pipeline hackers gained entry to the company’s computer network through a VPN that wasn’t using multifactor authentication, using a leaked password found on the dark web. million – up from $8.64 Those numbers don’t consider another cost – that of time.

Cybersecurity

Cybersecurity Data breaches Threat Detection Technology

Zero Trust: Hype vs. Reality

eSecurity Planet

JUNE 17, 2022

Just as the development of cannons and other weapons made walls obsolete as a form of defense, sophisticated cyber attacks have made the firewall -perimeter model of cybersecurity equally obsolete. Meanwhile, Viruses regularly bypass firewalls through malicious emails or when users click on infected websites. Zero Trust Defined.

Architecture

Architecture Firewall Technology VPN

Cyber Security Informer

Expert found a secret backdoor in Zyxel firewall and VPN

Almost 800,000 SonicWall VPN appliances online are vulnerable to CVE-2020-5135

Webinars

Trending Sources

CVE-2021-3064: Easily exploitable RCE flaw in Palo Alto Networks in GlobalProtect VPN

Webinars

SonicWall finally fixed a flaw resulting from a partially patched 2020 zero-day

Cisco fixes 5 critical flaws that could allow router firewall takeover

Palo Alto Networks fixes a critical flaw in firewall PAN-OS

Recently disclosed CVE-2020-29583 Zyxel flaw already under opportunistic attack

Security firm SonicWall was victim of a coordinated attack

NetWalker ransomware operators have made $25 million since March 2020

Palo Alto Networks addresses tens of serious issues in PAN-OS

APTs will exploit Palo Alto Networks’s PAN-OS flaw soon, US Cyber Command says

Flaws in leading industrial remote access systems allow disruption of operations

FBI and CISA warn of attacks by Rhysida ransomware gang

Security Affairs newsletter Round 295

A critical flaw in industrial automation systems opens to remote hack

Security Affairs newsletter Round 235

Experts disclose tens of flaws in Zyxel Cloud CNM SecuManager, includes dangerous backdoors

5 Components of the Kubernetes Control Plane that Demand Special Attention in Your Security Strategy

Top stories of 2020

Attacks against Denmark ‘s energy sector were not carried out by Russia-linked APT

The Biggest Lessons about Vulnerabilities at RSAC 2021

How to Save Your Organization $9.05 Million with a Nominal Investment in Cybersecurity

Zero Trust: Hype vs. Reality

Stay Connected