Krebs on Security

NOVEMBER 21, 2020

. “Separately, and unrelated to the outage, a routine audit of account activity identified potential unauthorized changes to a small number of customer domains and/or account information,” GoDaddy spokesperson Dan Race said. Restrict VPN access hours, where applicable, to mitigate access outside of allowed times.

Cryptocurrency 364

Cryptocurrency VPN Scams Social Engineering 364

Security Affairs

SEPTEMBER 29, 2021

CISA and the NSA agencies have published guidance for securely using virtual private network (VPN) solutions. Cybersecurity and Infrastructure Security Agency (CISA) and the National Security Agency (NSA) have released guidance for increasing the security of virtual private network (VPN) solutions.

VPN 144

VPN Government Firmware Authentication 144

Security Affairs

MAY 29, 2024

Check Point released hotfixes for a VPN zero-day vulnerability, tracked as CVE-2024-24919, which is actively exploited in attacks in the wild. Check Point released hotfixes to address a VPN zero-day vulnerability, tracked as CVE-2024-24919 , which is actively being exploited in attacks in the wild.

VPN 128

VPN Passwords Authentication Accountability 128

Security Affairs

APRIL 19, 2025

A remote authenticated attacker can exploit the flaw to inject arbitrary commands as a nobody user, which could potentially lead to arbitrary code execution. Arctic Wolf has uncovered an active campaign, running from January to April 2025, targeting SonicWall SMA 100 series appliances to steal VPN credentials.

Passwords 109

Passwords VPN Firewall Accountability 109

Security Affairs

APRIL 18, 2025

ASUS warns of an authentication bypass vulnerability in routers with AiCloud enabled that could allow unauthorized execution of functions on the device. ASUS warns of an authentication bypass vulnerability, tracked as CVE-2025-2492 (CVSS v4 score: 9.2), which impacts routers with AiCloud enabled.

Firmware 118

Firmware Authentication Passwords VPN 118

Security Affairs

AUGUST 31, 2023

Cisco is aware of attacks conducted by Akira ransomware threat actors targeting Cisco ASA VPNs that are not configured for multi-factor authentication. “This highlights the importance of enabling multi-factor authentication (MFA) in VPN implementations. . ” reads a post published by Cisco PSIRT.

Authentication 139

Authentication Ransomware VPN Hacking 139

Security Affairs

APRIL 16, 2024

Cisco Talos warns of large-scale brute-force attacks against a variety of targets, including VPN services, web application authentication interfaces and SSH services.

VPN 142

VPN Firewall Authentication Hacking 142

Security Affairs

SEPTEMBER 6, 2023

Experts warn of an Atlas VPN zero-day flaw impacting the Linux client that can reveal the user’s IP address by visiting a website. A Reddit user with the handle ‘Educational-Map-8145’ published a proof of concept exploit for a zero-day flaw in the Linux client of Atlas VPN. It does not have ANY authentication.

VPN 139

VPN Education Authentication Engineering 139

Security Affairs

MARCH 10, 2025

The attackers breached the organization via compromised credentials for a VPN portal that lacked multi-factor authentication (MFA). The group stated that it stole sensitive data such as private correspondence, personal information, and official decrees.

Ransomware 120

Ransomware VPN Healthcare Malware 120

Security Affairs

MAY 8, 2024

TunnelVision is a new VPN bypass technique that enables threat actors to spy on users’ traffic bypassing the VPN encapsulation. Leviathan Security researchers recently identified a novel attack technique, dubbed TunnelVision, to bypass VPN encapsulation. The researchers referred to this result as “decloaking.”

VPN 136

VPN Firewall Marketing Encryption 136

Security Affairs

OCTOBER 25, 2024

is a Denial of Service (DoS) issue that impacts the Remote Access VPN (RAVPN) service of ASA and FTD. An attacker could exploit this vulnerability by sending a large number of VPN authentication requests to an affected device. Services that are not related to VPN are not affected.” continues the advisory.

VPN 115

VPN Firewall Technology Passwords 115

Security Affairs

JUNE 24, 2021

Networking equipment giant Zyxel warns customers of a series of attacks that have been targeting some of its enterprise firewall and VPN devices. Networking equipment vendor Zyxel warned its customers of a series of attacks that have been targeting some of its enterprise firewall and VPN server solutions. Pierluigi Paganini.

VPN 144

VPN Firewall Firmware Authentication 144

Security Affairs

NOVEMBER 25, 2024

According to the advisory, the attack is only possible if the device is configured to use User-Based-PSK authentication and has a valid user with a username longer than 28 characters. for ATP, USG FLEX, and USG FLEX 50(W)/USG20(W)-VPN series. . for ATP, USG FLEX, and USG FLEX 50(W)/USG20(W)-VPN series.

Firewall 77

Firewall Ransomware VPN Firmware 77

Security Affairs

OCTOBER 29, 2024

“Through Eurojust, authorities were able to quickly exchange information and coordinate actions to take down the infostealers.” Change passwords : After malware removal, update passwords for key accounts (email, banking, work, social media) and enable two-factor authentication.

Identity Theft 128

Identity Theft Passwords Malware Banking 128

eSecurity Planet

AUGUST 27, 2024

A virtual private network (VPN) does more than just mask your identity—it fundamentally changes how your data moves across the internet. But what’s really going on under the hood when you browse the web using a VPN? Step 3: Data Transmission to the VPN Server The encrypted data is then transmitted to the VPN server.

VPN 103

VPN Encryption Internet Internet 103

Security Affairs

JANUARY 16, 2024

Experts warn that recently disclosed Ivanti Connect Secure VPN and Policy Secure vulnerabilities are massively exploited in the wild. is an Authentication Bypass issue that resides in the web component of Ivanti ICS 9.x, The flaw CVE-2023-46805 (CVSS score 8.2) x and Ivanti Policy Secure. x) and Ivanti Policy Secure.

VPN 131

VPN Authentication Small Business Telecommunications 131

Security Affairs

JUNE 16, 2024

Taiwanese manufacturer giant ASUS addressed a critical remote authentication bypass vulnerability impacting several router models. ASUS addresses a critical remote authentication bypass vulnerability, tracked as CVE-2024-3080 (CVSS v3.1 score: 9.8), impacting seven router models. impacting multiple devices.

Authentication 133

Authentication Firmware VPN Manufacturing 133

Webroot

MAY 9, 2025

These scammers are trying to gather personal data like your drivers license number and credit card information so they can steal from you. Youre asked for sensitive information like bank logins and passwords, which can be used to drain your bank account. Dont share: Never share any of your personal or financial information via text.

Scams 72

Scams Mobile Banking VPN 72

Security Affairs

FEBRUARY 1, 2024

Mandiant spotted new malware used by a China-linked threat actor UNC5221 targeting Ivanti Connect Secure VPN and Policy Secure devices. Mandiant researchers discovered new malware employed by a China-linked APT group known as UNC5221 and other threat groups targeting Ivanti Connect Secure VPN and Policy Secure devices.

VPN 138

VPN Malware Authentication Hacking 138

The Last Watchdog

SEPTEMBER 26, 2023

26, 2023 — The Internet Infrastructure Coalition (i2Coalition) launched the VPN Trust Initiative (VTI) in 2020 to establish a baseline for how virtual private network (VPN) providers should operate. Advertising Practices: Given the complexity and different use cases for VPNs, claims must not mislead.

VPN 100

VPN Internet Internet Technology 100

Security Affairs

JULY 29, 2022

Therefore, strong authentication methods are needed. Therefore, strong authentication methods are needed to improve security without hindering user convenience. What is Strong Authentication? The IAM Security Boundary Strong authentication is a critical component of modern-day identity and access management.

Authentication 128

Authentication Passwords Data privacy Identity Theft 128

The Last Watchdog

MARCH 6, 2021

Remote workers face having both their personal and work-related information compromised. Set-up 2-factor authentication. Two-factor authentication or two-step verification involves adding a step to add an extra layer of protection to accounts. Since a VPN tunnels traffic through a server in a location of your choosing.

VPN 214

VPN Passwords Firewall Risk 214

Duo's Security Blog

MAY 23, 2024

When reading the title of this blog, you might be wondering to yourself why RADIUS is being highlighted as a subject — especially amidst all of the advancements of modern authentication we see taking place recently. It is commonly used for network access into VPNs, wireless access points, and other devices (more on this later).

Authentication 111

Authentication Wireless Passwords Encryption 111

Security Affairs

JANUARY 31, 2024

Threat actors are exploiting recently disclosed zero-day flaws in Ivanti Connect Secure (ICS) VPN devices to deliver KrustyLoader. is an Authentication Bypass issue that resides in the web component of Ivanti ICS 9.x, The flaw CVE-2023-46805 (CVSS score 8.2) x and Ivanti Policy Secure. x) and Ivanti Policy Secure.

VPN 130

VPN Malware Authentication Small Business 130

CyberSecurity Insiders

OCTOBER 29, 2021

This is the most crucial step to keep your personal information safe. Ideally, your online accounts should be equipped with two-step factor authentication. This information can be used to buy things with stolen credit card data, open new lines of credit, or take out loans in the unsuspecting victim’s name and Social Security number.

Passwords 141

Passwords Advertising Accountability Data breaches 141

Security Affairs

FEBRUARY 1, 2024

The government experts also ordered to monitor the authentication or identity management services that could be exposed and urged to isolate the systems from any enterprise resources to the greatest degree possible. is an Authentication Bypass issue that resides in the web component of Ivanti ICS 9.x, x and Ivanti Policy Secure.

VPN 133

VPN Authentication Software Malware 133

Malwarebytes

NOVEMBER 6, 2024

Lock things down Having a strict policy to protect your important assets with strong passwords and multi-factor authentication (MFA) should be a no-brainer. A stolen or lost device is stressful enough without having to worry about confidential information. Know what legal body you need to inform in case of a breach.

Small Business 105

Small Business Backups Firewall VPN 105

Krebs on Security

FEBRUARY 26, 2023

The general manager of Escrow.com said he suspected the call was a scam, but decided to play along for about an hour — all the while recording the call and coaxing information out of the scammer. “He was literally reading off the tickets to the notes of the admin panel inside GoDaddy.”

Hacking 329

Hacking Social Engineering Phishing Scams 329

Security Affairs

AUGUST 22, 2023

The Akira ransomware gang targets Cisco VPN products to gain initial access to corporate networks and steal their data. The group now is targeting Cisco VPN products to gain initial access to corporate networks. Sophos researchers observed in May the threat actor using compromised Cisco VPN accounts to breach target networks.

VPN 98

VPN Ransomware Hacking Education 98

Security Affairs

NOVEMBER 3, 2024

Chinese threat actors use Quad7 botnet in password-spray attacks FBI arrested former Disney World employee for hacking computer menus and mislabeling allergy info Sophos details five years of China-linked threat actors’ activity targeting network devices worldwide PTZOptics cameras zero-days actively exploited in the wild New LightSpy spyware (..)

Cryptocurrency 111

Cryptocurrency Hacking Phishing Cyber Attacks 111

Krebs on Security

JULY 10, 2022

Research suggests identity thieves were able to hijack the accounts simply by signing up for new accounts at Experian using the victim’s personal information and a different email address. “I was able to answer the credit report questions successfully, which authenticated me to their system,” Turner said.

Accountability 335

Accountability Passwords Authentication Password Management 335

Security Affairs

MAY 24, 2024

Introduction to TLS and Certificate Transparency Log Securing Internet communications is crucial for maintaining the confidentiality and integrity of information in transit. 509 [2] certificates) and encrypted, authenticated connections (TLS [3] and its precursor, SSL [4] ). For instance, suppose firewall manufacturer ACME Inc.

DNS 138

DNS Manufacturing Firewall Internet 138

Webroot

MARCH 3, 2025

During this time, many government agencies and consumer protection organizations come together to help educate consumers on how to keep their personal and financial information secure. Millions of customers were put at risk when their social security numbers, phone numbers, and other sensitive personal information were leaked.

Consumer Protection 99

Consumer Protection Identity Theft Scams Social Engineering 99

Krebs on Security

APRIL 6, 2022

LAPSUS$ typically threatens to release sensitive data unless paid a ransom, but with most victims the hackers ended up publishing any information they stole (mainly computer source code). The actor logged the information provided by the employee and used it in real-time to gain access to corporate tools using the employee’s account.”

Social Engineering 290

Social Engineering Phishing Engineering Accountability 290

Security Affairs

SEPTEMBER 8, 2023

An unauthenticated, remote attacker can exploit the vulnerability to conduct a brute force attack in an attempt to identify valid username and password combinations or an authenticated, remote attacker to establish a clientless SSL VPN session with an unauthorized user. ” reads the advisory published by the IT giant. or earlier).

Ransomware 145

Ransomware VPN Authentication Hacking 145

Security Affairs

MAY 1, 2025

Below are the descriptions of the two flaws: CVE-2023-44221 (CVSS score: 7.2) – Improper neutralization of special elements in the SMA100 SSL-VPN management interface. ” Both flaws impact SMA 100 Series devices, including SMA 200, 210, 400, 410, 500v.

Firmware 70

Firmware Mobile VPN Authentication 70

eSecurity Planet

OCTOBER 28, 2024

Google researchers Xingyu Jin and Clement Lecigene recently provided exploit information on the bug as part of Google’s Project Zero. The attacker must be authenticated and have Site Owner permissions to conduct the attack, but with those, they could inject and execute arbitrary code in SharePoint Server contexts. base score.

Phishing 102

Phishing Authentication Software VPN 102