CSO Magazine

APRIL 20, 2021

Over the past few months, several cyberespionage groups, including one believed to be tied to the Chinese government, have been breaking into the networks of organizations from the United States and Europe by exploiting vulnerabilities in VPN appliances from zero-trust access provider Pulse Secure. Sign up for CSO newsletters. ].

VPN 98

VPN CSO Hacking Authentication 98

CSO Magazine

MARCH 20, 2023

ForegeRock is adding a new passwordless authentication capability, called Enterprise Connect Passwordless, to its flagship Identity Platform product to help eliminate the need for user passwords in large organizations. To read this article in full, please click here

Authentication 68

Authentication VPN Mobile Passwords 68

CSO Magazine

JUNE 23, 2021

With the recent Colonial Pipeline attack , the initial infection point was reportedly an old, unused, but still open VPN account. The VPN account did not have two-factor authentication ( 2FA ) enabled, allowing the attacker to merely log in. To read this article in full, please click here (Insider Story)

VPN 117

VPN Accountability Phishing Authentication 117

CSO Magazine

JANUARY 13, 2023

Remote code execution in FortiOS SSL-VPN. The vulnerability, tracked as CVE-2022-42475 , is in the SSL-VPN functionality of FortiOS and can be exploited by remote attackers without authentication. Successful exploitation can result in the execution of arbitrary code and commands.

Network Security 113

Network Security VPN Authentication Government 113

CSO Magazine

FEBRUARY 23, 2021

It means all users and devices must be authenticated and authorized before accessing whatever resources they are after. Traditionally, the way IT dealt with ensuring identity was by forcing users to access the network via a virtual private network (VPN).

Digital transformation 91

Digital transformation VPN Authentication Technology 91

SecureWorld News

APRIL 22, 2021

Mandiant is currently tracking 12 malware families associated with the exploitation of Pulse Secure VPN devices. These families are related to the circumvention of authentication and backdoor access to these devices, but they are not necessarily related to each other and have been observed in separate investigations.

Government 88

Government CSO Software VPN 88

Security Through Education

OCTOBER 27, 2021

Connect to a secure network and use a company-issued Virtual Private Network (VPN). Typically, corporate networks are equipped with firewalls, a Chief Security Officer (CSO), and a whole cybersecurity department to keep them safe. Lock down your login. Keep your personal and corporate devices on separate Wi-Fi networks.

Cybersecurity 137

Cybersecurity Social Engineering Firewall Engineering 137