The Hacker News

JULY 3, 2023

No less than 330000 FortiGate firewalls are still unpatched and vulnerable to CVE-2023-27997, a critical security flaw affecting Fortinet devices that have come under active exploitation in the wild. CVE-2023-27997

Firewall 97

Firewall VPN Internet Internet 97

Security Affairs

JULY 3, 2023

Researchers reported that there are 490,000 Fortinet firewalls exposing SSL VPN interfaces on the internet, and roughly 69% of them are still vulnerable to CVE-2023-27997. Bishop Fox’s Capability Development team built an exploit for the vulnerability CVE-2023-27997. ” states the analysis published by Bishop Fox.

Firewall 98

Firewall VPN Firmware Internet 98

Security Affairs

DECEMBER 13, 2023

Sophos backports the patch for CVE-2022-3236 for end-of-life (EOL) firewall firmware versions due to ongoing attacks exploiting the issue. In December 2022, Sophos released security patches to address seven vulnerabilities in Sophos Firewall version 19.5 , including some arbitrary code execution bugs. reads the advisory.

Firmware 132

Firmware Firewall Hacking Internet 132

Security Affairs

JUNE 1, 2023

Threat actors are actively exploiting a command injection flaw, tracked as CVE-2023-28771, in Zyxel firewalls to install malware. Threat actors are actively attempting to exploit a command injection vulnerability, tracked as CVE-2023-28771 , that impacts Zyxel firewalls. in its firewall devices. USG FLEX ZLD V4.60

Firewall 98

Firewall Firmware VPN DDOS 98

The Last Watchdog

MAY 16, 2023

At RSA Conference 2023 , I had the chance to meet with Paul Nicholson , senior director of product marketing and analyst relations at A10 Networks. At RSAC 2023, A10 announced the addition of a next-generation web application firewall ( NGWAF ,) powered by Fastly, to its core Thunder ADC service.

Mobile 214

Mobile Cloud Migration Marketing Firewall 214

eSecurity Planet

JANUARY 16, 2024

Keep an eye out for security announcements from your firewall vendors; it’s possible additional similar vulnerabilities will come to light. The problem: Juniper Networks released a bulletin about a remote code execution vulnerability in its SRX firewalls and EX switches. The vulnerability can be tracked as CVE-2023-29357.

Firewall 109

Firewall Firmware IoT Authentication 109

Krebs on Security

JUNE 15, 2023

government agency in charge of improving the nation’s cybersecurity posture is ordering all federal agencies to take new measures to restrict access to Internet-exposed networking equipment. ” In details published on June 12 , Fortinet confirmed that one of the vulnerabilities ( CVE-2023-27997 ) is being actively exploited.

Risk 279

Risk VPN Internet Internet 279

eSecurity Planet

AUGUST 29, 2023

Firewall-as-a-Service (FWaaS) offers firewall capabilities as a cloud-based service. Traditional firewalls protect the network perimeter, enforcing security standards by regulating incoming and outgoing traffic according to rules and traffic analysis.

Firewall 98

Firewall Architecture Data privacy Internet 98

Security Affairs

NOVEMBER 13, 2023

US CISA added four vulnerabilities (tracked as CVE-2023-36844, CVE-2023-36845, CVE-2023-36846, and CVE-2023-36847) in Juniper devices to its Known Exploited Vulnerabilities catalog. ” states the update published by the company on November 8 th 2023. Customers are urged to immediately upgrade.”

Firewall 138

Firewall Authentication Internet Internet 138

Security Affairs

SEPTEMBER 26, 2024

internet service providers (ISPs) as part of a cyber espionage campaign code-named Salt Typhoon. internet service providers in recent months as part of a cyber espionage campaign code-named Salt Typhoon. internet-service providers in recent months in pursuit of sensitive information, according to people familiar with the matter.”

Internet 131

Internet Internet DNS Telecommunications 131

SecureList

DECEMBER 6, 2024

Total number of registered vulnerabilities and number of critical ones, Q3 2023 and Q3 2024 ( download ) Q3 2024 preserved the upward trend in the number of vulnerabilities detected and registered. Dynamics of the number of Windows users who encountered exploits, Q1 2023 Q3 2024. The data is taken from cve.org.

Authentication 109

Authentication Software Wireless Internet 109

Security Affairs

SEPTEMBER 6, 2024

. “An improper access control vulnerability has been identified in the SonicWall SonicOS management access and SSLVPN, potentially leading to unauthorized resource access and in specific conditions, causing the firewall to crash.” ” reads the SonicWall’s advisory. 5035 and older versions. ” reads the advisory.

Firewall 128

Firewall Passwords Internet Internet 128

SecureList

MARCH 12, 2024

Profile of participants and applications We collected the data from a sample of the application security assessment projects our team completed in 2021–2023. Set firewall filters to prevent access to unauthorized domains. SQL Injection Most high-risk vulnerabilities in 2021–2023 were associated with SQL Injection.

Passwords 140

Passwords Authentication Architecture Risk 140

SecureList

DECEMBER 9, 2024

was used by tens of millions of websites approximately 4% of all sites on the internet which highlights the severity of the incident, whose full impact is yet to be determined. In 2023, cyberattacks using trusted relationships had already become one of the top three most common vectors , with this trend gaining new momentum in 2024.

Internet 111

Internet Internet Risk Social Engineering 111

eSecurity Planet

OCTOBER 11, 2023

Microsoft’s Patch Tuesday for October 2023 covers a total of 103 CVEs, including three zero-day vulnerabilities affecting WordPad, Skype and the HTTP/2 “ Rapid Reset ” DDoS vulnerability. CVE-2023-41763 , an elevation of privilege vulnerability in Skype for Business with a CVSS score of 5.3

DDOS 109

DDOS Engineering Authentication Social Engineering 109

SecureList

SEPTEMBER 21, 2023

We conducted an analysis of the IoT threat landscape for 2023, as well as the products and services offered on the dark web related to hacking connected devices. In the first half of 2023, 97.91% of password brute-force attempts registered by our honeypots targeted Telnet, and only 2.09%, SSH.

IoT 137

IoT DDOS Passwords Malware 137

Security Boulevard

JUNE 9, 2023

On 31-May-2023, Progress Software disclosed a critical vulnerability CVE-2023-34362 in the MOVEit application. As of 7 June 2023, there were roughly 2,500 instances of MOVEit Transfer exposed to the public internet. It connects to the database and offers data exfil functionality based on a provided X-siLock-Step1 header.

Software 103

Software Internet Internet Malware 103

SecureList

NOVEMBER 14, 2022

We polled our experts from the GReAT team and have gathered a small number of key insights about what APT actors are likely to focus on in 2023. Verdict: very limited fulfillment of the prediction ❌ APT predictions for 2023. Here are the developments we think we could be seeing in 2023. What we predicted in 2022.

Firmware 129

Firmware Surveillance Mobile Telecommunications 129

eSecurity Planet

SEPTEMBER 22, 2023

The Barracuda SecureEdge SASE product builds off the well established Barracuda security products (firewalls, gateways, email security, and more) that already protect so many global companies. When compared against other SASE competitors, Barracuda SecureEdge can be considered one of the best options to protect remote users.

Firewall 98

Firewall Marketing Firmware Technology 98

Security Affairs

JANUARY 14, 2024

Forescout experts questioned the attribution of cyber attacks that targeted the energy sector in Denmark in 2023 to the Russia-linked Sandworm. Forescout experts shared findings from their analysis of the cyber attacks that targeted the energy sector in Denmark in 2023, attributing them to the Russia-linked Sandworm. through 5.35.

Firewall 137

Firewall Firmware Cyber Attacks VPN 137

eSecurity Planet

SEPTEMBER 5, 2023

August 28, 2023 Ransomware Group Exploits Citrix NetScaler Vulnerability In July, Citrix released a patch for a critical remote code execution vulnerability ( CVE-2023-3519 ), which affected the company’s NetScaler ADC and NetScaler Gateway products and carried a severity rating of 9.8 out of 10 on the CVSS vulnerability scale.

VPN 104

VPN Authentication Ransomware Antivirus 104

eSecurity Planet

SEPTEMBER 26, 2023

Founded in Tel Aviv, Israel, Cato Networks started as a firewall-as-a-service (FWaaS) company and focuses on the convergence of security, networks, and the cloud. Who is Cato Networks?

Firewall 98

Firewall VPN Malware Internet 98

eSecurity Planet

SEPTEMBER 26, 2023

SD-WAN integration with the SASE controller for Meraki, Catalyst, and others Cisco Umbrella SIG unifies firewall, SWG, DNS-layer security, CASB, and threat intelligence functions into a single and well-tested cloud service. Cisco+ Secure Connect Platform Cisco+ Secure Connect strives to provide a turnkey SASE solution for a variety of needs.

Firewall 98

Firewall DNS Architecture Technology 98

The Last Watchdog

NOVEMBER 12, 2023

I recently discussed the current state of tech standards with DigiCert’s Mike Nelson , Global Vice President of Digital Trust and, Dean Coclin , Senior Director of Trust Services, at DigiCert Trust Summit 2023. Another is S/MIME , which stands for “secure/multipurpose internet mail extensions. identification.”

Manufacturing 276

Manufacturing Authentication Marketing Encryption 276

eSecurity Planet

SEPTEMBER 26, 2023

Physical appliances provide functionality for routing wide area networks (WANs), stateful firewalls, SD-WANs, NGFW, antivirus, intrusion prevention services (IPS), and unified threat management (UTM) capabilities for local networks.

Firewall 98

Firewall Software Internet Internet 98

Security Affairs

NOVEMBER 9, 2023

US CISA added the vulnerability CVE-2023-29552 in the Service Location Protocol (SLP) to its Known Exploited Vulnerabilities catalog. Cybersecurity and Infrastructure Security Agency (CISA) added the vulnerability CVE-2023-29552 (CVSS score: 7.5) CISA orders federal agencies to fix this flaw by November 29, 2023.

Internet 131

Internet Internet Firewall Hacking 131

SecureList

JULY 19, 2023

On March 14, 2023, Microsoft published a blogpost describing an Outlook Client Elevation of Privilege Vulnerability (CVSS: 9.8 While the threat actor infrastructure might request Net-NTLMv2 authentication, Windows will honor the defined internet security zones and will not send (leak) Net-NTLMv2 hashes.

Firmware 98

Firmware Internet Internet Government 98

Security Affairs

AUGUST 4, 2024

A China-linked APT, tracked as StormBamboo, compromised an internet service provider (ISP) to poison software update mechanisms with malware. In mid-2023, Volexity discovered multiple malware infections affecting macOS and Windows systems within victim organizations. The company linked the attacks to StormBamboo APT group.

Malware 144

Malware DNS Firewall Software 144

CyberSecurity Insiders

MAY 24, 2023

When it comes to protecting their network, most start with the basic firewall. So, what type of internet connection is the most secure? Meet the contenders First off, it is important to understand the different types of internet connections. Copper : Copper cables are the original internet connections.

Internet 94

Internet Internet Wireless Cyber threats 94

Krebs on Security

FEBRUARY 22, 2024

In October 2023, Danowski detailed how i-SOON became embroiled in a software development contract dispute when it was sued by a competing Chinese cybersecurity company called Chengdu 404. Mr. Haibo has not yet responded to a request for comment. In September 2021, the U.S. But that’s getting harder to do.”

Government 335

Government Hacking Cyber threats Mobile 335

eSecurity Planet

AUGUST 14, 2023

August 12 , 2023 Ford Auto’s TI Wi-Fi Vulnerability The Internet of Things (IoT) continues to expand and become a threat to connected businesses. While the infotainment system is supposedly firewalled from steering, throttling, and braking, attached devices may not be fully secured against communication via Wi-Fi.

Software 98

Software Malware Internet Internet 98

The Last Watchdog

DECEMBER 8, 2020

Locking down web gateways and erecting a robust firewall were considered the be-all and end-all. Related: The shared burden of securing the Internet of Things. Company networks must support endless permutations of users and apps, both on-premises and in the Internet cloud. billion by 2023.

Firewall 213

Firewall Digital transformation Internet Internet 213

Malwarebytes

MAY 15, 2023

This means that Federal Civilian Executive Branch (FCEB) agencies need to remediate these vulnerabilities by June 2, 2023. The Ruckus vulnerability is listed under CVE-2023-25717 , which indicates that Ruckus Wireless Access Point software contains a vulnerability in its web services component.

Wireless 98

Wireless Firewall Internet Internet 98

Security Affairs

NOVEMBER 14, 2023

The attackers exploited zero-day vulnerabilities in Zyxel firewalls used by many critical infrastructure operators in Denmark. On April 25, 2023, Zyxel disclosed a critical vulnerability (CVSS score 9.8), tracked as CVE-2023-28771 , in a number of their firewalls. through 4.73, VPN series firmware versions 4.60

Cyber Attacks 140

Cyber Attacks Firmware Firewall VPN 140

eSecurity Planet

SEPTEMBER 25, 2023

Founded in 2004, Cloudflare initially wanted to determine the source of email spam and became dedicated to building a better, more secure internet. Customers on this tier will receive Logpush to security incident and event management (SIEM) tools or cloud storage and certificate-based mTLS Authentication for internet of things (IoT) devices.

DNS 98

DNS DDOS IoT Firewall 98

SecureList

JANUARY 17, 2025

This setup allowed us to establish communication over DoIP (Diagnostic Over Internet Protocol): Communication between diagnostic software and hardware The TCP communication between the diagnostic tool and the diagnostic hardware device is performed over Ethernet using custom protocols (Protocol Data Unit, PDU).

Backups 123

Backups Architecture Firmware Software 123

Security Affairs

SEPTEMBER 8, 2023

The US agency has detected the presence of indicators of compromise (IOCs) at an Aeronautical Sector organization as early as January 2023. ” The US CISA also reported that multiple APT groups were observed exploiting CVE-2022-42475 to establish a presence on the organization’s firewall device. ” continues the alert.

VPN 142

VPN Firewall Accountability Cybersecurity 142