Firewall - Cyber Security Informer

Backdoor in Zyxel Firewalls and Gateways

Schneier on Security

JANUARY 6, 2021

This is bad : More than 100,000 Zyxel firewalls, VPN gateways, and access point controllers contain a hardcoded admin-level backdoor account that can grant attackers root access to devices via either the SSH interface or the web administration panel. […].

Firewall

Firewall VPN Passwords Accountability

What Is a Firewall and Do you Need One?

Adam Levin

JULY 6, 2022

A firewall is a network security device or program designed to prevent unauthorized and malicious internet traffic from entering a private network or device. Firewalls filter incoming network traffic at a computer’s entry points, or ports, where information is exchanged between the computer network and external devices. Probably not.

Firewall

Firewall Software Internet Internet

U.S. CISA adds Microsoft Outlook, Sophos XG Firewall, and other flaws to its Known Exploited Vulnerabilities catalog

Security Affairs

FEBRUARY 6, 2025

Cybersecurity and Infrastructure Security Agency (CISA) adds Microsoft Outlook, Sophos XG Firewall, and other flaws to its Known Exploited Vulnerabilities catalog. is a buffer overflow issue in Sophos XG Firewall 17.x is a Remote Code Execution flaw in Microsoft Outlook. is a Remote Code Execution flaw in Microsoft Outlook.

Firewall

Firewall Hacking Cybersecurity Risk

Best of 2024: If You are Reachable, You Are Breachable, and Firewalls & VPNs are the Front Door

Security Boulevard

JANUARY 3, 2025

Firewalls and VPN appliances are critical gateways. The post Best of 2024: If You are Reachable, You Are Breachable, and Firewalls & VPNs are the Front Door appeared first on Security Boulevard. Like all on-prem systems, a vulnerability can lead to a compromise that is used to open the door for attackers.

Firewall

Firewall VPN Security Awareness Cybersecurity

Attackers exploit recently disclosed Palo Alto Networks PAN-OS firewalls bug

Security Affairs

FEBRUARY 15, 2025

Threat actors are exploiting a recently disclosed vulnerability, tracked as CVE-2025-0108, inPalo Alto Networks PAN-OS firewalls. Researchers warn that threat actors are exploiting a recently disclosed vulnerability, tracked as CVE-2025-0108, in Palo Alto Networks PAN-OS firewalls. ” states GreyNoise. h4 >= 11.2.4-h4

Firewall

Firewall Authentication Architecture Risk

Zyxel firewalls targeted in recent ransomware attacks

Security Affairs

NOVEMBER 25, 2024

Zyxel warns that a ransomware group has been observed exploiting a recently patched command injection issue in its firewalls. Zyxel warns that a ransomware gang has been observed exploiting a recently patched command injection vulnerability, tracked as CVE-2024-42057, in its firewalls for initial compromise.

Firewall

Firewall Ransomware VPN Firmware

A new campaign is likely targeting a zero-day in Fortinet FortiGate firewalls

Security Affairs

JANUARY 14, 2025

Experts warn of a new campaign targeting an alleged zero-day in Fortinet FortiGate firewalls with management interfaces exposed online. Arctic Wolf researchers observed a campaign targeting Fortinet FortiGate firewalls with exposed management interfaces, likely exploiting a zero-day vulnerability. ” continues the advisory.

Firewall

Firewall VPN Accountability Firmware

Palo Alto Networks Raises Alarm on Firewall Vulnerability Following Active Exploitation

Penetration Testing

NOVEMBER 15, 2024

Today, Palo Alto Networks, a leading cybersecurity firm, has issued an urgent update to a recent security advisory, raising the severity level to “Critical” after observing active exploitation of a... The post Palo Alto Networks Raises Alarm on Firewall Vulnerability Following Active Exploitation appeared first on Cybersecurity (..)

Firewall

Firewall Cybersecurity

Zero-Trust DNS

Schneier on Security

MAY 16, 2024

ZTDNS aims to solve this decades-old problem by integrating the Windows DNS engine with the Windows Filtering Platform—the core component of the Windows Firewall—directly into client devices. ” By default, the firewall will deny resolutions to all domains except those enumerated in allow lists. ”

DNS

DNS Firewall Engineering Network Security

SonicWall warns of an exploitable SonicOS vulnerability

Security Affairs

JANUARY 8, 2025

SonicWall warns customers to address an authentication bypass vulnerability in its firewall’s SonicOS that is “susceptible to actual exploitation.” All customers are encouraged to upgrade their firewalls to the latest MR listed below.” hardware firewalls: SonicOS 6.5.5.1-6n NSv firewalls: SonicOS 6.5.4.v-21s-RC2457

Firewall

Firewall Firmware VPN Authentication

SuperBlack Ransomware operators exploit Fortinet Firewall flaws in recent attacks

Security Affairs

MARCH 14, 2025

Operators behind the SuperBlack ransomware exploited two vulnerabilities in Fortinet firewalls for recent attacks. “When the firewall had VPN capabilities, the threat actor created local VPN user accounts with names resembling legitimate accounts but with an added digit at the end. 13.73.13.73, 8.8.8.8, ” reads the report.

Firewall

Firewall Ransomware VPN Encryption

Pygmy Goat Malware: A Sophisticated Network Device Backdoor Targets Firewalls

Penetration Testing

NOVEMBER 4, 2024

This backdoor malware, discovered on Sophos XG... The post Pygmy Goat Malware: A Sophisticated Network Device Backdoor Targets Firewalls appeared first on Cybersecurity News. In a recent report by the National Cyber Security Centre (NCSC), analysts detailed a new malware threat targeting network devices, dubbed “Pygmy Goat.”

Firewall

Firewall Malware Cybersecurity

Protect Your Business With This Seamless Firewall — Now $150 Off

Tech Republic Security

MARCH 27, 2024

DNS FireWall is an intuitive security app built to protect you and your business from malware, phishing, botnets and more security threats.

Firewall

Firewall DNS Phishing Malware

Palo Alto Networks Firewalls Exposed: BootHole and Other Critical Flaws Uncovered

Penetration Testing

JANUARY 26, 2025

Eclypsium researchers have uncovered multiple critical vulnerabilities in several Palo Alto Networks (PAN) next-generation firewalls (NGFWs). This report The post Palo Alto Networks Firewalls Exposed: BootHole and Other Critical Flaws Uncovered appeared first on Cybersecurity News.

Firewall

Firewall Cybersecurity

Palo Alto Networks fixed a high-severity PAN-OS flaw

Security Affairs

DECEMBER 27, 2024

An unauthenticated attacker can exploit this vulnerability to reboot the firewall by sending a malicious packet through its data plane. Repeated exploitation forces the firewall into maintenance mode. Repeated attempts to trigger this condition will cause the firewall to enter maintenance mode.” ” reads the advisory.

DNS

DNS Firewall Spyware Software

Zero-Day Vulnerability Suspected in Attacks on Fortinet Firewalls with Exposed Interfaces

The Hacker News

JANUARY 14, 2025

Threat hunters are calling attention to a new campaign that has targeted Fortinet FortiGate firewall devices with management interfaces exposed on the public internet.

Firewall

Firewall VPN Accountability Authentication

Palo Alto Networks confirmed active exploitation of recently disclosed zero-day

Security Affairs

NOVEMBER 16, 2024

Palo Alto Networks confirmed active exploitation of a zero-day in its PAN-OS firewall and released new indicators of compromise (IoCs). Last week, Palo Alto Networks warned customers to limit access to their next-gen firewall management interface due to a potential remote code execution vulnerability (CVSSv4.0 Base Score: 9.3)

Firewall

Firewall Internet Internet VPN

PAN-OS Firewall Vulnerability Under Active Exploitation – IoCs Released

The Hacker News

NOVEMBER 16, 2024

Palo Alto Networks has released new indicators of compromise (IoCs) a day after the network security vendor confirmed that a new zero-day vulnerability impacting its PAN-OS firewall management interface has been actively exploited in the wild.

Firewall

Firewall Network Security

Palo Alto Networks fixed multiple DoS bugs in its firewalls

Security Affairs

APRIL 11, 2024

Palo Alto Networks fixed several vulnerabilities in its PAN-OS operating system, including 3 issues that can trigger a DoS condition on its firewalls. Repeated attacks can eventually trigger a DoS condition by forcing the firewall into maintenance mode, requiring manual intervention to restore online functionality.

Firewall

Firewall Software Engineering Authentication

Palo Alto Networks warns of potential RCE in PAN-OS management interface

Security Affairs

NOVEMBER 8, 2024

Palo Alto Networks warns customers to restrict access to their next-generation firewalls because of a potential RCE flaw in the PAN-OS management interface. Palo Alto Networks warns customers to limit access to their next-gen firewall management interface due to a potential remote code execution vulnerability in PAN-OS.

Firewall

Firewall Authentication Internet Internet

SonicWall addressed an improper access control issue in its firewalls

Security Affairs

AUGUST 26, 2024

SonicWall addressed a critical flaw in its firewalls that could allow attackers to achieve unauthorized access to the devices. SonicWall has released security updates to address a critical vulnerability, tracked as CVE-2024-40766 (CVSS score: 9.3), in its firewalls. 13o Gen 6 Firewalls – 6.5.2.8-2n 5035 and older versions.”

Firewall

Firewall Firmware Malware Internet

Palo Alto Firewalls Found Vulnerable to Secure Boot Bypass and Firmware Exploits

The Hacker News

JANUARY 23, 2025

An exhaustive evaluation of three firewall models from Palo Alto Networks has uncovered a host of known security flaws impacting the devices' firmware as well as misconfigured security features. These weren't obscure, corner-case vulnerabilities," security vendor Eclypsium said in a report shared with The Hacker News.

Firmware

Firmware Firewall

15,000 FortiGate Firewalls Exposed: Massive Leak Includes VPN Credentials

Penetration Testing

JANUARY 15, 2025

Cybersecurity expert Kevin Beaumont has reported that over 15,000 FortiGate firewall configurations, including VPN credentials, have been publicly The post 15,000 FortiGate Firewalls Exposed: Massive Leak Includes VPN Credentials appeared first on Cybersecurity News.

Firewall

Firewall VPN Cybersecurity

Muddling Meerkat, a mysterious DNS Operation involving China’s Great Firewall

Security Affairs

MAY 1, 2024

The threat actors appear to have the capability to control China’s Great Firewall and were observed utilizing a novel technique involving fake DNS MX records. The experts noticed a spike in activity observed in September 2023. However, the Infoblox researchers have yet to discover the motivation behind the attacks.

DNS

DNS Firewall DDOS Hacking

Threat actor leaked config files and VPN passwords for over Fortinet Fortigate devices

Security Affairs

JANUARY 15, 2025

. “The build date coded in the last number block also points to the same date range: None of the firewall firmwares examined had been compiled after September 14, 2022.” “As many as 80 different device types can be found in the data leak, with the FortiGate Firewall 40F and 60F being the most widespread.

VPN

VPN Passwords Firewall Firmware

SonicWall Issues Urgent Patch for Critical Firewall Vulnerability (CVE-2024-40766)

Penetration Testing

AUGUST 22, 2024

The vulnerability, which carries a CVSS score... The post SonicWall Issues Urgent Patch for Critical Firewall Vulnerability (CVE-2024-40766) appeared first on Cybersecurity News.

Firewall

Firewall Network Security Cybersecurity

BunkerWeb: The Next-Generation Open-Source Web Application Firewall

Penetration Testing

AUGUST 3, 2024

Enter BunkerWeb, a cutting-edge, open-source Web Application Firewall (WAF) that promises to make web security seamless and effective. Built on the robust... The post BunkerWeb: The Next-Generation Open-Source Web Application Firewall appeared first on Cybersecurity News.

Firewall

Firewall Cybersecurity

RedTail Crypto-Mining Malware Exploiting Palo Alto Networks Firewall Vulnerability

The Hacker News

MAY 30, 2024

The threat actors behind the RedTail cryptocurrency mining malware have added a recently disclosed security flaw impacting Palo Alto Networks firewalls to its exploit arsenal.

Firewall

Firewall Malware Cryptocurrency

SonicWall Issues Critical Patch for Firewall Vulnerability Allowing Unauthorized Access

The Hacker News

AUGUST 26, 2024

SonicWall has released security updates to address a critical flaw impacting its firewalls that, if successfully exploited, could grant malicious actors unauthorized access to the devices. The vulnerability, tracked as CVE-2024-40766 (CVSS score: 9.3), has been described as an improper access control bug. "An

Firewall

Google Releases PoC for CVE-2025-0110 Command Injection in PAN-OS Firewalls

Penetration Testing

FEBRUARY 20, 2025

A Google researcher has disclosed details and a proof-of-concept (PoC) exploit for a vulnerability (CVE-2025-0110) in Palo Alto The post Google Releases PoC for CVE-2025-0110 Command Injection in PAN-OS Firewalls appeared first on Cybersecurity News.

Firewall

Firewall Cybersecurity

Unyielding Defense: Cisco Firewall Achieves AAA Rating From SE Labs

Cisco Security

MARCH 11, 2025

See how Cisco Secure Firewall excelled in the SE Labs test, blocking advanced attacks with innovative threat intelligence and encryption capabilities.

Firewall

Firewall Encryption

Palo Alto fixed critical flaws in PAN-OS firewalls that allow for full compromise of the devices

Security Affairs

OCTOBER 9, 2024

Palo Alto fixed critical flaws in PAN-OS firewalls, warning that attackers could chain these vulnerabilities to hijack the devices. Palo Alto Networks addressed multiple vulnerabilities that an attacker can chain to hijack PAN-OS firewalls. ” reads the advisory. ” reads the advisory.

Firewall

Firewall Passwords Authentication Phishing

Palo Alto Networks warns that CVE-2025-0111 flaw is actively exploited in attacks

Security Affairs

FEBRUARY 19, 2025

Palo Alto Networks warns that the vulnerability CVE-2025-0111 is actively exploited with two other flaws to compromise PAN-OS firewalls. Palo Alto Networks warns that threat actors are chaining the vulnerability CVE-2025-0111 with two other vulnerabilities, tracked as CVE-2025-0108 with CVE-2024-9474 , to compromise PAN-OS firewalls.

Firewall

Firewall Authentication Architecture Internet

Sophos Issues Hotfixes for Critical Firewall Flaws: Update to Prevent Exploitation

The Hacker News

DECEMBER 20, 2024

Sophos has released hotfixes to address three security flaws in Sophos Firewall products that could be exploited to achieve remote code execution and allow privileged system access under certain conditions. Of the three, two are rated Critical in severity. There is currently no evidence that the shortcomings have been exploited in the wild.

Firewall

Beyond the Firewall: Evansville Christian School Deploys Smarter Google Workspace Security & Safety

Security Boulevard

APRIL 7, 2025

Like many K-12 schools, they have foundational cybersecurity tools in place, including a firewall and GoGuardian for content filtering and student monitoring. The post Beyond the Firewall: Evansville Christian School Deploys Smarter Google Workspace Security & Safety appeared first on Security Boulevard.

Firewall

Firewall Cyber threats Cybersecurity

CVE-2024-9474 Exploited: LITTLELAMB.WOOLTEA Backdoor Discovered in Palo Alto Devices

Penetration Testing

DECEMBER 24, 2024

Northwave Cyber Security has identified a sophisticated backdoor, LITTLELAMB.WOOLTEA, targeting Palo Alto Networks firewalls. The backdoor was uncovered during a forensic investigation into a compromised Palo Alto Networks device.

Firewall

Firewall Cybersecurity Malware

U.S. CISA adds Palo Alto Expedition, Android, CyberPanel and Nostromo nhttpd bugs to its Known Exploited Vulnerabilities catalog

Security Affairs

NOVEMBER 7, 2024

Palo Alto Networks Expedition is a tool designed to help users transition to and optimize Palo Alto Networks’ next-generation firewalls. It assists with the migration of configurations from other firewall vendors and legacy Palo Alto Networks devices to newer models.

Firewall

Firewall Authentication Accountability Risk

New Open SSH Vulnerability

Schneier on Security

JULY 3, 2024

Moreover, gaining root access would enable attackers to bypass critical security mechanisms such as firewalls, intrusion detection systems, and logging mechanisms, further obscuring their activities.

Firewall

Firewall Data breaches Malware Risk

Best of 2024: The Best SIEM Tools To Consider in 2024

Security Boulevard

DECEMBER 26, 2024

SIEM solutions enable enterprises to monitor and analyze security-related data from a variety of sources, such as firewalls, intrusion detection systems (IDS), and endpoint security devices. What is a SIEM?

Firewall

'ArcaneDoor' Cyberspies Hacked Cisco Firewalls to Access Government Networks

WIRED Threat Level

APRIL 24, 2024

Sources suspect China is behind the targeted exploitation of two zero-day vulnerabilities in Cisco’s security appliances.

Firewall

Firewall Government Hacking

Fortinet vs Palo Alto NGFWs 2025: Comparison Guide

eSecurity Planet

MARCH 28, 2025

Fortinet and Palo Alto Networks are two of the best network security providers, offering excellent next-generation firewalls (NGFWs) with strong, independently verified security. Fortinet excels in usability and administration, while Palo Alto has an edge in advanced features and firewall capabilities. 5 Ease of us: 4.7/5

Firewall

Firewall Small Business Architecture Spyware

Quantum Threats and How to Protect Your Data

SecureWorld News

DECEMBER 8, 2024

For example, Palo Alto Networks has integrated PQC into its VPNs and next-generation firewalls to protect data in transit against quantum threats. Ensure quantum-ready hardware: Require that new infrastructure device purchases, such as routers and firewalls, have quantum-resistant or upgradable firmware.

Encryption

Encryption Firewall Education Firmware

Your Network Is Showing – Time to Go Stealth

Security Boulevard

APRIL 17, 2025

The Old Guard: Firewalls, VPNs and Exposed Control Planes Cyberattacks have evolved beyond the perimeter. No longer limited to opportunistic breaches, attackers are now executing coordinated campaigns that target the very foundations of enterprise network infrastructure firewalls, VPNs, and control planes. The takeaway?

Firewall

Firewall VPN Encryption Architecture

GUEST ESSAY: Best practices checklists each individual computer user still needs to follow

The Last Watchdog

MAY 9, 2022

Keep your firewall turned on. Software based firewalls are widely recommended for single computers, while hardware firewalls are typically provided with routers for networks. Some operating systems provide native software firewalls (such as Windows OS).

Backups

Backups Firewall Software Mobile

Backdoor in Zyxel Firewalls and Gateways

What Is a Firewall and Do you Need One?

Trending Sources

U.S. CISA adds Microsoft Outlook, Sophos XG Firewall, and other flaws to its Known Exploited Vulnerabilities catalog

Best of 2024: If You are Reachable, You Are Breachable, and Firewalls & VPNs are the Front Door

Attackers exploit recently disclosed Palo Alto Networks PAN-OS firewalls bug

Zyxel firewalls targeted in recent ransomware attacks

A new campaign is likely targeting a zero-day in Fortinet FortiGate firewalls

Palo Alto Networks Raises Alarm on Firewall Vulnerability Following Active Exploitation

Zero-Trust DNS

SonicWall warns of an exploitable SonicOS vulnerability

SuperBlack Ransomware operators exploit Fortinet Firewall flaws in recent attacks

Pygmy Goat Malware: A Sophisticated Network Device Backdoor Targets Firewalls

Protect Your Business With This Seamless Firewall — Now $150 Off

Palo Alto Networks Firewalls Exposed: BootHole and Other Critical Flaws Uncovered

Palo Alto Networks fixed a high-severity PAN-OS flaw

Zero-Day Vulnerability Suspected in Attacks on Fortinet Firewalls with Exposed Interfaces

Palo Alto Networks confirmed active exploitation of recently disclosed zero-day

PAN-OS Firewall Vulnerability Under Active Exploitation – IoCs Released

Palo Alto Networks fixed multiple DoS bugs in its firewalls

Palo Alto Networks warns of potential RCE in PAN-OS management interface

SonicWall addressed an improper access control issue in its firewalls

Palo Alto Firewalls Found Vulnerable to Secure Boot Bypass and Firmware Exploits

15,000 FortiGate Firewalls Exposed: Massive Leak Includes VPN Credentials

Muddling Meerkat, a mysterious DNS Operation involving China’s Great Firewall

Threat actor leaked config files and VPN passwords for over Fortinet Fortigate devices

SonicWall Issues Urgent Patch for Critical Firewall Vulnerability (CVE-2024-40766)

BunkerWeb: The Next-Generation Open-Source Web Application Firewall

RedTail Crypto-Mining Malware Exploiting Palo Alto Networks Firewall Vulnerability

SonicWall Issues Critical Patch for Firewall Vulnerability Allowing Unauthorized Access

Google Releases PoC for CVE-2025-0110 Command Injection in PAN-OS Firewalls

Unyielding Defense: Cisco Firewall Achieves AAA Rating From SE Labs

Palo Alto fixed critical flaws in PAN-OS firewalls that allow for full compromise of the devices

Palo Alto Networks warns that CVE-2025-0111 flaw is actively exploited in attacks

Sophos Issues Hotfixes for Critical Firewall Flaws: Update to Prevent Exploitation

Beyond the Firewall: Evansville Christian School Deploys Smarter Google Workspace Security & Safety

CVE-2024-9474 Exploited: LITTLELAMB.WOOLTEA Backdoor Discovered in Palo Alto Devices

U.S. CISA adds Palo Alto Expedition, Android, CyberPanel and Nostromo nhttpd bugs to its Known Exploited Vulnerabilities catalog

New Open SSH Vulnerability

Best of 2024: The Best SIEM Tools To Consider in 2024

'ArcaneDoor' Cyberspies Hacked Cisco Firewalls to Access Government Networks

Fortinet vs Palo Alto NGFWs 2025: Comparison Guide

Quantum Threats and How to Protect Your Data

Your Network Is Showing – Time to Go Stealth

GUEST ESSAY: Best practices checklists each individual computer user still needs to follow

Stay Connected