2023, Firewall, IoT and VPN - Cyber Security Informer

Overview of IoT threats in 2023

SecureList

SEPTEMBER 21, 2023

IoT devices (routers, cameras, NAS boxes, and smart home components) multiply every year. The first-ever large-scale malware attacks on IoT devices were recorded back in 2008, and their number has only been growing ever since. Telnet, the overwhelmingly popular unencrypted IoT text protocol, is the main target of brute-forcing.

IoT

IoT DDOS Passwords Malware

VulnRecap 1/16/24 – Major Firewall Issues Persist

eSecurity Planet

JANUARY 16, 2024

Keep an eye out for security announcements from your firewall vendors; it’s possible additional similar vulnerabilities will come to light. The problem: Juniper Networks released a bulletin about a remote code execution vulnerability in its SRX firewalls and EX switches. The vulnerability can be tracked as CVE-2023-29357.

Firewall

Firewall Firmware IoT Authentication

Security Affairs newsletter Round 455 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

JANUARY 21, 2024

Admin of the BreachForums hacking forum sentenced to 20 years supervised release Russia-linked Midnight Blizzard APT hacked Microsoft corporate emails VF Corp December data breach impacts 35 million customers China-linked APT UNC3886 exploits VMware zero-day since 2021 Ransomware attacks break records in 2023: the number of victims rose by 128% U.S.

Artificial Intelligence

Artificial Intelligence VPN Hacking Firewall

Why BYOD Is the Favored Ransomware Backdoor

eSecurity Planet

JANUARY 11, 2024

Most Compromises Exploit Unmanaged Devices Microsoft’s fourth annual Digital Defense Report for 2023 reveals that 80% of all ransomware compromises come from unmanaged devices and that 60% of those attacks use remote encryption. Naturally, this leads to three important questions: What are unmanaged devices?

Ransomware

Ransomware Encryption IoT VPN

Multiple DDoS botnets were observed targeting Zyxel devices

Security Affairs

JULY 22, 2023

Researchers warn of several DDoS botnets exploiting a critical flaw tracked as CVE-2023-28771 in Zyxel devices. Fortinet FortiGuard Labs researchers warned of multiple DDoS botnets exploiting a vulnerability impacting multiple Zyxel firewalls. through 4.73, VPN series firmware versions 4.60 through 5.35.

DDOS

DDOS Firmware VPN Firewall

Ivanti Policy Secure: NAC Product Review

eSecurity Planet

APRIL 14, 2023

Features Automated threat responses to indicators of compromise Centralized visibility and policy management of all endpoints — workstations, laptops, and internet of things (IoT) devices Bidirectional third party integration to improve security and auditing Firewalls: Checkpoint, Fortinet, Juniper, Palo Alto Networks, etc.

IoT

IoT VPN Firewall Authentication

OPSWAT MetaAccess: NAC Product Review

eSecurity Planet

APRIL 17, 2023

The latest version of MetaAccess solution extends network access control to cover software-as-a-service (SaaS), cloud resources, and a wide variety of “headless devices” such as internet of things (IoT), operations technology (OT), industrial control systems (ICS), medical devices, and industrial IoT (IIoT).

IoT

IoT Wireless Malware Authentication

Barracuda SecureEdge SASE Review 2023

eSecurity Planet

SEPTEMBER 22, 2023

The Barracuda SecureEdge SASE product builds off the well established Barracuda security products (firewalls, gateways, email security, and more) that already protect so many global companies. When compared against other SASE competitors, Barracuda SecureEdge can be considered one of the best options to protect remote users.

Firewall

Firewall Marketing Firmware Technology

Cloudflare One SASE Review & Features 2023

eSecurity Planet

SEPTEMBER 25, 2023

Customers on this tier will receive Logpush to security incident and event management (SIEM) tools or cloud storage and certificate-based mTLS Authentication for internet of things (IoT) devices.

DNS

DNS DDOS IoT Firewall

What is Network Security? Definition, Threats & Protections

eSecurity Planet

MARCH 14, 2023

When the internet arrived, the network added a firewall to protect networks and users as they connected to the world wide web. The internet of things (IoT), operations technology (OT), and the industrial internet of things (IIoT) also now connect to networks. In a complex, modern network, this assumption falls apart.

Network Security

Network Security Firewall Penetration Testing Encryption

Palo Alto Prisma SASE Review & Features 2023

eSecurity Planet

SEPTEMBER 26, 2023

Palo Alto is a top cybersecurity company that pioneered firewall technology and continues to focus on market leadership. Prisma SASE Palo Alto’s Prisma SASE solution is the only company recognized as a Leader in Gartner’s 2023 Magic Quadrant for Single-Vendor SASE.

Artificial Intelligence

Artificial Intelligence Marketing DNS IoT

What Is Encryption? Definition, How it Works, & Examples

eSecurity Planet

DECEMBER 7, 2023

AES encryption can be commonly found in communication protocols, virtual private network (VPN) encryption, full-disk encryption, and Wi-Fi transmission protocols. While less computationally constrained than IoT, mobile devices constrain computations to avoid consuming power and draining battery life.

Encryption

Encryption Passwords IoT Firewall

Aruba ClearPass Policy Manager NAC Solution Review

eSecurity Planet

MARCH 28, 2023

Aruba , a Hewlett Packard Enterprise (HPE) company, provides mobility and IoT solutions for organizations of all sizes. A pioneer in wireless networking, Aruba now offers infrastructure services as software from the public or private cloud to enable secure connectivity for a wide range of devices including mobile and IoT.

Wireless

Wireless Authentication IoT VPN

What is SASE? Secure Access Service Service Edge Explained

eSecurity Planet

AUGUST 11, 2023

Traditional networking either causes operations bottlenecks by forcing all traffic to route through centralized firewalls or exposes remote assets and cloud resources to attack. SASE provides an edge security solution that addresses these challenges without the bottlenecks of traditional virtual private network (VPN) solutions.

Firewall

Firewall IoT Technology Internet

VMware SASE Solution Review

eSecurity Planet

SEPTEMBER 25, 2023

Customers then can incorporate VMware SD-WAN Edge appliances (physical or virtual) and optional add-ons such as payment card industry (PCI) compliance packages, external gateways, enhanced firewall service, and dedicated hosted components.

VPN

VPN Software Technology Artificial Intelligence

Best Distributed Denial of Service (DDoS) Protection Tools

eSecurity Planet

JANUARY 14, 2022

Research by Cisco estimates the volume of DDoS attacks will surge from more than 10 million in 2021 up to 15 million by 2023. IoT devices coupled with the growth of edge computing endpoints that can be exploited alongside new amplification and reflection techniques will continue to drive larger and more sophisticated attacks.”.

DDOS

DDOS DNS Firewall Media

Cisco Identity Services Engine (ISE): NAC Product Review

eSecurity Planet

MARCH 30, 2023

ISE is intended for use with guest and employee endpoints, but Cisco also offers separate and specialized NAC solutions for equipment (internet of things (IoT), operational technology (OT), and industrial controls), for medical devices , and specifically for rapid threat containment.

Engineering

Engineering Wireless Firewall Mobile

2024 State of Cybersecurity: Reports of More Threats & Prioritization Issues

eSecurity Planet

MAY 2, 2024

The 2023 vendor surveys arriving this quarter paint a picture of a cybersecurity landscape under attack, with priority issues affecting deployment, alert response, and exposed vulnerabilities. Sophos: Noted that 43% of all 2023 malware signature updates are for stealers, spyware, and keyloggers often used to steal credentials from devices.

Cybersecurity

Cybersecurity DDOS Penetration Testing Passwords

VulnRecap 3/4/24 – Ivanti, Ubiquiti, AppLocker Under Attack

eSecurity Planet

MARCH 4, 2024

The fix: To eliminate malware infections, perform a factory reset, upgrade to the latest firmware, change all default usernames and passwords, and adjust firewall rules to block exposure to unwanted remote management services. The fix: Update libraries and instances to versions patched after February 8, 2024.

IoT

IoT Internet Internet Ransomware

Advanced threat predictions for 2023

SecureList

NOVEMBER 14, 2022

We polled our experts from the GReAT team and have gathered a small number of key insights about what APT actors are likely to focus on in 2023. Okta was breached through one of its service providers, Sitel, itself compromised via the insecure VPN gateway of a recently acquired company. What we predicted in 2022.

Firmware

Firmware Surveillance Mobile Telecommunications

Cyber Security Informer

Overview of IoT threats in 2023

VulnRecap 1/16/24 – Major Firewall Issues Persist

Trending Sources

Security Affairs newsletter Round 455 by Pierluigi Paganini – INTERNATIONAL EDITION

Why BYOD Is the Favored Ransomware Backdoor

Multiple DDoS botnets were observed targeting Zyxel devices

Ivanti Policy Secure: NAC Product Review

OPSWAT MetaAccess: NAC Product Review

Barracuda SecureEdge SASE Review 2023

Cloudflare One SASE Review & Features 2023

What is Network Security? Definition, Threats & Protections

Palo Alto Prisma SASE Review & Features 2023

What Is Encryption? Definition, How it Works, & Examples

Aruba ClearPass Policy Manager NAC Solution Review

What is SASE? Secure Access Service Service Edge Explained

VMware SASE Solution Review

Best Distributed Denial of Service (DDoS) Protection Tools

Cisco Identity Services Engine (ISE): NAC Product Review

2024 State of Cybersecurity: Reports of More Threats & Prioritization Issues

VulnRecap 3/4/24 – Ivanti, Ubiquiti, AppLocker Under Attack

Advanced threat predictions for 2023

Stay Connected