Firewall, Hacking and Software - Cyber Security Informer

More than 2,000 Palo Alto Networks firewalls hacked exploiting recently patched zero-days

Security Affairs

NOVEMBER 21, 2024

Threat actors already hacked thousands of Palo Alto Networks firewalls exploiting recently patched zero-day vulnerabilities. Thousands of Palo Alto Networks firewalls have reportedly been compromised in attacks exploiting recently patched zero-day vulnerabilities ( CVE-2024-0012 and CVE-2024-9474 ) in PAN-OS. This week, the U.S.

Firewall

Firewall Hacking VPN Cybersecurity

Attackers exploit recently disclosed Palo Alto Networks PAN-OS firewalls bug

Security Affairs

FEBRUARY 15, 2025

Threat actors are exploiting a recently disclosed vulnerability, tracked as CVE-2025-0108, inPalo Alto Networks PAN-OS firewalls. Researchers warn that threat actors are exploiting a recently disclosed vulnerability, tracked as CVE-2025-0108, in Palo Alto Networks PAN-OS firewalls. ” states GreyNoise. h4 >= 11.2.4-h4

Firewall

Firewall Authentication Architecture Risk

Palo Alto Networks fixed a high-severity PAN-OS flaw

Security Affairs

DECEMBER 27, 2024

Palo Alto Networks addressed a high-severity flaw, tracked as CVE-2024-3393 (CVSS score: 8.7), in PAN-OS software that could cause a denial-of-service (DoS) condition. An unauthenticated attacker can exploit this vulnerability to reboot the firewall by sending a malicious packet through its data plane. ” reads the advisory.

DNS

DNS Firewall Spyware Software

RSAC insights: SolarWinds hack illustrates why software builds need scrutiny — at deployment

The Last Watchdog

MAY 11, 2021

By patiently slipping past the best cybersecurity systems money can buy and evading detection for 16 months, the perpetrators of the SolarWinds hack reminded us just how much heavy lifting still needs to get done to make digital commerce as secure as it needs to be. Related: DHS launches 60-day cybersecurity sprints.

Software

Software Hacking Malware Engineering

Malware Hidden in Call of Duty Cheating Software

Schneier on Security

APRIL 2, 2021

News article : Most troublingly, Activision says that the “cheat” tool has been advertised multiple times on a popular cheating forum under the title “new COD hack.” “Guides for cheats will typically ask users to disable or uninstall antivirus software and host firewalls, disable kernel code signing, etc.”

Software

Software Malware Antivirus Advertising

Cisco fixed tens of vulnerabilities, including an actively exploited one

Security Affairs

OCTOBER 24, 2024

Cisco addressed multiple vulnerabilities in Adaptive Security Appliance (ASA), Secure Firewall Management Center (FMC), and Firepower Threat Defense (FTD) products, including an actively exploited flaw tracked as CVE-2024-20481. The vulnerability CVE-2024-20481 (CVSS score of 5.8)

VPN

VPN Firewall Passwords Software

News alert: INE Security shares cyber hygiene guidance for small- and medium-sized businesses

The Last Watchdog

OCTOBER 23, 2024

LastPass reports that 80% of all hacking-related breaches leveraged either stolen and/or weak passwords. INE Security advises businesses to secure their network by using firewalls, encrypting data, and regularly updating security software. Many cyber attacks exploit vulnerabilities in outdated software.

Small Business

Small Business Data breaches Backups Passwords

MY TAKE: Massive data breaches persist as agile software development fosters full-stack hacks

The Last Watchdog

JUNE 9, 2021

Data leaks and data theft are part and parcel of digital commerce, even more so in the era of agile software development. based software security vendor specializing in API data protection. By successfully hacking the client-facing application, she was then able to relay commands to a legacy AWS metadata service to obtain credentials.

Data breaches

Data breaches Software Hacking Mobile

What We Can Learn from the Capital One Hack

Krebs on Security

AUGUST 2, 2019

According to a source with direct knowledge of the breach investigation, the problem stemmed in part from a misconfigured open-source Web Application Firewall (WAF) that Capital One was using as part of its operations hosted in the cloud with Amazon Web Services (AWS).

Hacking

Hacking Firewall Data breaches Software

Palo Alto Networks warns that CVE-2025-0111 flaw is actively exploited in attacks

Security Affairs

FEBRUARY 19, 2025

Palo Alto Networks warns that the vulnerability CVE-2025-0111 is actively exploited with two other flaws to compromise PAN-OS firewalls. Palo Alto Networks warns that threat actors are chaining the vulnerability CVE-2025-0111 with two other vulnerabilities, tracked as CVE-2025-0108 with CVE-2024-9474 , to compromise PAN-OS firewalls.

Firewall

Firewall Authentication Architecture Internet

Threat Trends: Firewall

Cisco Security

OCTOBER 19, 2021

In any perimeter defense a key component is firewalls—the proverbial guard towers in your fortifications. In this Threat Trends release, we’ll be looking at Cisco Secure Firewall. The goal is to highlight the common threats that organizations encounter and block with Secure Firewall. Secure Firewall version 7.0

Firewall

Firewall Authentication DNS Accountability

International law enforcement operation dismantled RedLine and Meta infostealers

Security Affairs

OCTOBER 29, 2024

The two infostealers allowed operators to harvest usernames, passwords, contact info, and crypto-wallets from victims, the threat actors sold this data to criminals for financial theft and hacking. Update software : Keep your operating system, security software, and firewall up to date to patch vulnerabilities.

Identity Theft

Identity Theft Malware Passwords Banking

Palo Alto Networks fixed multiple DoS bugs in its firewalls

Security Affairs

APRIL 11, 2024

Palo Alto Networks fixed several vulnerabilities in its PAN-OS operating system, including 3 issues that can trigger a DoS condition on its firewalls. Repeated attacks can eventually trigger a DoS condition by forcing the firewall into maintenance mode, requiring manual intervention to restore online functionality.

Firewall

Firewall Software Engineering Authentication

Hackers steal StormShield firewall source code in data breach

Bleeping Computer

FEBRUARY 4, 2021

Leading French cybersecurity company StormShield disclosed that their systems were hacked, allowing a threat actor to access the companies' support ticket system and steal source code for Stormshield Network Security firewall software. [.].

Firewall

Firewall Data breaches Network Security Hacking

Cisco fixes 5 critical flaws that could allow router firewall takeover

Security Affairs

JULY 16, 2020

Cisco has released security updates to address critical remote code execution (RCE), authentication bypass, and static default credential vulnerabilities affecting multiple router and firewall devices. Cisco also addressed a privilege escalation issue that impacts the Cisco Prime License Manager software. Pierluigi Paganini.

Firewall

Firewall Small Business Wireless Authentication

New Russia Malware targets firewall appliances

CyberSecurity Insiders

FEBRUARY 23, 2022

A new malware developed by Sandworm hacking group has targeted appliances that are fire walled and reports are in that the military intelligence of the Russian Federation developed the malicious software. The post New Russia Malware targets firewall appliances appeared first on Cybersecurity Insiders.

Firewall

Firewall Malware IoT Software

Experts Explain How to Bypass Recent Improvement of China’s Great Firewall

Security Affairs

JANUARY 31, 2021

Experts from Great Firewall Report analyzed recent upgrades to China’s Great Firewall and revealed that it can be circumvented. Members of the Great Firewall Report group have analyzed the recent improvement implemented for China’s Great Firewall censorship system and revealed that it is possible to bypass it.

Firewall

Firewall Surveillance Internet Internet

Q&A: SolarWinds, Mimecast hacks portend intensified third-party, supply-chain compromises

The Last Watchdog

JANUARY 25, 2021

SolarWinds and Mimecast are long-established, well-respected B2B suppliers of essential business software embedded far-and-wide in company networks. Thanks to a couple of milestone hacks disclosed at the close of 2020 and start of 2021, they will forever be associated with putting supply-chain vulnerabilities on the map.

Hacking

Hacking B2B Authentication Software

NEW TECH: ‘Micro-segmentation’ security vendor Guardicore seeks to disrupt firewall market

The Last Watchdog

MARCH 30, 2020

Agile software innovation is the order of the day. Related: Micro-segmentation taken to the personal device level The flip side, of course, is that an already wide-open attack surface – one that has been getting plundered for the past two decades by criminal hacking groups — is getting scaled up, as well.

Firewall

Firewall Marketing Digital transformation Cloud Migration

Police took down several popular counter-antivirus (CAV) services, including AvCheck

Security Affairs

JUNE 2, 2025

“Crypting is the process of using software to make malware difficult for antivirus programs to detect,” the DoJ said. ” Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs hacking,AvCheck) Dutch, Finnish, and other national police to shut down malware services.

Antivirus

Antivirus Cybercrime Malware Firewall

Juniper Networks fixed a critical RCE bug in its firewalls and switches

Security Affairs

JANUARY 12, 2024

Juniper Networks fixed a critical pre-auth remote code execution (RCE) flaw, tracked as CVE-2024-21591, in its SRX Series firewalls and EX Series switches. Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, Juniper ) ” reads the advisory published by the vendor.

Firewall

Firewall Hacking Software Information Security

U.S. CISA adds Progress Kemp LoadMaster, Palo Alto Networks PAN-OS and Expedition bugs to its Known Exploited Vulnerabilities catalog

Security Affairs

NOVEMBER 19, 2024

CVE-2024-9474 is a privilege escalation vulnerability in Palo Alto Networks PAN-OS software allows a PAN-OS administrator with access to the management web interface to perform actions on the firewall with root privileges. The issue affects PAN-OS versions 10.2, but does not impact Cloud NGFW or Prisma Access.

Firewall

Firewall Authentication Risk Hacking

Hacking ATMs by exploiting flaws in ScrutisWeb ATM fleet software

Security Affairs

AUGUST 15, 2023

Researchers found several flaws in the ScrutisWeb ATM fleet monitoring software that can expose ATMs to hack. Researchers from the Synack Red Team found multi flaws ( CVE-2023-33871, CVE-2023-38257, CVE-2023-35763 and CVE-2023-35189 ) in the ScrutisWeb ATM fleet monitoring software that can be exploited to remotely hack ATMs.

Software

Software Hacking Firewall VPN

How is information stored in cloud secure from hacks

CyberSecurity Insiders

MAY 14, 2023

So, how is information stored in the cloud secured from hacks? Cloud providers also employ security measures such as firewalls, intrusion detection systems, and antivirus software to prevent attacks. Firewalls are barriers that prevent unauthorized access to a network or system.

Hacking

Hacking Antivirus Firewall Encryption

MY TAKE: Memory hacking arises as a go-to tactic to carry out deep, persistent incursions

The Last Watchdog

MARCH 4, 2019

Related: We’re in the midst of ‘cyber Pearl Harbor’ Peel back the layers of just about any sophisticated, multi-staged network breach and you’ll invariably find memory hacking at the core. Here’s what I took away from our discussion: Transient hacks.

Hacking

Hacking Energy and Utilities System Administration Accountability

NEW TECH: A better way to secure agile software — integrate app scanning, pen testing into WAF

The Last Watchdog

AUGUST 17, 2020

The amazing array of digital services we so blithely access on our smartphones wouldn’t exist without agile software development. Related: ‘Business logic’ hacks on the rise Consider that we began this century relying on the legacy “waterfall” software development process. if not outright project failure.

Software

Software Firewall Penetration Testing Digital transformation

Mirai botnet targets SSR devices, Juniper Networks warns

Security Affairs

DECEMBER 19, 2024

To mitigate the exposure to these threats, users are recommended to change default credentials, use strong passwords, review access logs, employ firewalls and IDS/IPS, and keep firmware up-to-date. Use Firewalls and IDS/IPS : Employ firewalls to block unauthorized access and intrusion detection systems to monitor network behavior.

DDOS

DDOS Firmware Firewall Passwords

U.S. CISA adds Cisco ASA and FTD, and RoundCube Webmail bugs to its Known Exploited Vulnerabilities catalog

Security Affairs

OCTOBER 25, 2024

Cisco warned customers of password-spraying attacks that have been targeting Remote Access VPN (RAVPN) services configured on Cisco Secure Firewall devices. in the open-source Roundcube webmail software. Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, CISA )

VPN

VPN Firewall Technology Passwords

SHARED INTEL: Report details how cyber criminals leverage HTTPS TLS to hide malware

The Last Watchdog

APRIL 21, 2021

This surge in TLS abuse has shifted the security community’s focus back to a venerable network security tool, the firewall. Hacking rings are using TLS to evade detection while delivering botnet commands, embedding malware and exfiltrating data. In short, TLS helps preserve the integrity of legitimate digital connections.

Malware

Malware Firewall Encryption Data breaches

Security Affairs newsletter Round 501 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

DECEMBER 8, 2024

Now He Wants to Help You Escape, Too Dozens of Countries Hit in Chinese Telecom Hacking Campaign, Top U.S. officials urge Americans to use encrypted apps amid unprecedented cyberattack The Great Pokmon Go Spy Panic Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs hacking,newsletter)

Artificial Intelligence

Artificial Intelligence Spyware Hacking Ransomware

Nation-state actors exploited two zero-days in ASA and FTD firewalls to breach government networks

Security Affairs

APRIL 24, 2024

Nation-state actor UAT4356 has been exploiting two zero-days in ASA and FTD firewalls since November 2023 to breach government networks. ” Pierluigi Paganini Follow me on Twitter: @securityaffairs and Facebook and Mastodon ( SecurityAffairs – hacking, ASA) .

Firewall

Firewall Government VPN Authentication

Who’s Hacking You?

Webroot

MARCH 9, 2021

Aside from arming yourself with the knowledge you need to identify attacks, it’s important to install threat detection and remediation software on your devices. Be sure to update and patch software and firewalls as well as network security programs. The post Who’s Hacking You? appeared first on Webroot Blog.

Hacking

Hacking DNS Surveillance Cybercrime

U.S. Offers $10M bounty for info on RedLine malware creator and state hackers

Security Affairs

JUNE 6, 2025

The two infostealers allowed operators to harvest usernames, passwords, contact info, and crypto-wallets from victims, the threat actors sold this data to criminals for financial theft and hacking. Update software : Keep your operating system, security software, and firewall up to date to patch vulnerabilities.

Malware

Malware Passwords Identity Theft Accountability

BEST PRACTICES – 9 must-do security protocols companies must embrace to stem remote work risks

The Last Watchdog

MARCH 6, 2021

Related: Poll confirms rise of Covid 19-related hacks. Set up firewalls. Firewalls act as a defense line in preventing the possibility of threats entering your system. Use antivirus software. Firewalls help, but threats will inevitably get through. Firewalls help, but threats will inevitably get through.

VPN

VPN Firewall Risk Passwords

Actions Target Russian Govt. Botnet, Hydra Dark Market

Krebs on Security

APRIL 7, 2022

Department of Justice (DOJ) says the GRU’s hackers built Cyclops Blink by exploiting previously undocumented security weaknesses in firewalls and routers made by both ASUS and WatchGuard Technologies. A statement from the U.S. SANDWORM AND TRITON. energy facilities. and international companies and entities, including U.S. ” HYDRA.

Marketing

Marketing Energy and Utilities Malware Ransomware

Threat actors target software firm in Ukraine using GoMet backdoor

Security Affairs

JULY 21, 2022

Threat actors targeted a large software development company in Ukraine using the GoMet backdoor. Researchers from Cisco Talos discovered an uncommon piece of malware that was employed in an attack against a large Ukrainian software development company. SecurityAffairs – hacking, Ukraine). ” concludes the report.

Software

Software Malware Architecture Firewall

French Firms Rocked by Kasbah Hacker?

Krebs on Security

MARCH 2, 2020

A large number of French critical infrastructure firms were hacked as part of an extended malware campaign that appears to have been orchestrated by at least one attacker based in Morocco, KrebsOnSecurity has learned. com , an Arabic-language computer hacking forum. But he denied ever participating in illegal hacking activities.

DNS

DNS Penetration Testing Malware Hacking

U.S. CISA adds SonicWall SonicOS and Palo Alto PAN-OS flaws to its Known Exploited Vulnerabilities catalog

Security Affairs

FEBRUARY 18, 2025

The two vulnerabilities are: CVE-2025-0108 Palo Alto PAN-OS Authentication Bypass Vulnerability CVE-2024-53704 SonicWall SonicOS SSLVPN Improper Authentication Vulnerability Researchers recently warned that threat actors exploit a recently disclosed vulnerability, CVE-2025-0108, in Palo Alto Networks PAN-OS firewalls. states GreyNoise.

Firewall

Firewall Firmware Authentication VPN

Security Affairs newsletter Round 511 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

FEBRUARY 15, 2025

CISA adds Apple iOS and iPadOS and Mitel SIP Phones flaws to its Known Exploited Vulnerabilities catalog Attackers exploit recently disclosed Palo Alto Networks PAN-OS firewalls bug U.S. custody in exchange for Marc Fogel North Korea-linked APT Emerald Sleet is using a new tactic U.S.

Spyware

Spyware Firewall Artificial Intelligence Malware

The Silent Breach: How E-Waste Fuels Cybercrime

SecureWorld News

MARCH 27, 2025

In the case of old or unused electronic devices that are carelessly thrown away, cybercriminals can hack these for information and extort this data for a high price. An introduction to e-waste security and hacking One of the biggest risks to e-waste is cybercrime. How likely is hacking after improper e-waste disposal?

Cybercrime

Cybercrime Computers and Electronics Passwords Firewall

NEW TECH: Trend Micro flattens cyber risks — from software development to deployment

The Last Watchdog

AUGUST 25, 2020

Today robust security frameworks are gaining traction for staying on top of patching software vulnerabilities, managing account access and responding swiftly to any suspicious activity detected on endpoint computing devices. Cybersecurity technology is far more advanced today than it was five years ago, or even two years ago.

Cyber Risk

Cyber Risk Software Risk Cloud Migration

Security Affairs newsletter Round 500 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

DECEMBER 1, 2024

Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Cybercrime

Cybercrime Firewall Ransomware Social Engineering

A Defense-in-Depth Approach Could Stop the Next Big Hack in its Tracks

Webroot

MARCH 29, 2021

A firewall with the right threat intelligence embedded could have blocked communications with the command-and-control server thus preventing a Trojanized Orion install from connecting back to the attackers and stopping them from furthering the attack. Outside of the corporate firewall, it is the Wild West.

Hacking

Hacking DNS Firewall Malware

Palo Alto Networks addresses tens of serious issues in PAN-OS

Security Affairs

MAY 15, 2020

Palo Alto Networks addressed tens of vulnerabilities in PAN-OS, the software that runs on the company’s next-generation firewalls. Palo Alto Networks has issued security updates to address tens of vulnerabilities in PAN-OS, the software that runs on the company’s next-generation firewalls. Pierluigi Paganini.

Firewall

Firewall Authentication Advertising VPN

More than 2,000 Palo Alto Networks firewalls hacked exploiting recently patched zero-days

Attackers exploit recently disclosed Palo Alto Networks PAN-OS firewalls bug

Trending Sources

Palo Alto Networks fixed a high-severity PAN-OS flaw

RSAC insights: SolarWinds hack illustrates why software builds need scrutiny — at deployment

Malware Hidden in Call of Duty Cheating Software

Cisco fixed tens of vulnerabilities, including an actively exploited one

News alert: INE Security shares cyber hygiene guidance for small- and medium-sized businesses

MY TAKE: Massive data breaches persist as agile software development fosters full-stack hacks

What We Can Learn from the Capital One Hack

Palo Alto Networks warns that CVE-2025-0111 flaw is actively exploited in attacks

Threat Trends: Firewall

International law enforcement operation dismantled RedLine and Meta infostealers

Palo Alto Networks fixed multiple DoS bugs in its firewalls

Hackers steal StormShield firewall source code in data breach

Cisco fixes 5 critical flaws that could allow router firewall takeover

New Russia Malware targets firewall appliances

Experts Explain How to Bypass Recent Improvement of China’s Great Firewall

Q&A: SolarWinds, Mimecast hacks portend intensified third-party, supply-chain compromises

NEW TECH: ‘Micro-segmentation’ security vendor Guardicore seeks to disrupt firewall market

Police took down several popular counter-antivirus (CAV) services, including AvCheck

Juniper Networks fixed a critical RCE bug in its firewalls and switches

U.S. CISA adds Progress Kemp LoadMaster, Palo Alto Networks PAN-OS and Expedition bugs to its Known Exploited Vulnerabilities catalog

Hacking ATMs by exploiting flaws in ScrutisWeb ATM fleet software

How is information stored in cloud secure from hacks

MY TAKE: Memory hacking arises as a go-to tactic to carry out deep, persistent incursions

NEW TECH: A better way to secure agile software — integrate app scanning, pen testing into WAF

Mirai botnet targets SSR devices, Juniper Networks warns

U.S. CISA adds Cisco ASA and FTD, and RoundCube Webmail bugs to its Known Exploited Vulnerabilities catalog

SHARED INTEL: Report details how cyber criminals leverage HTTPS TLS to hide malware

Security Affairs newsletter Round 501 by Pierluigi Paganini – INTERNATIONAL EDITION

Nation-state actors exploited two zero-days in ASA and FTD firewalls to breach government networks

Who’s Hacking You?

U.S. Offers $10M bounty for info on RedLine malware creator and state hackers

BEST PRACTICES – 9 must-do security protocols companies must embrace to stem remote work risks

Actions Target Russian Govt. Botnet, Hydra Dark Market

Threat actors target software firm in Ukraine using GoMet backdoor

French Firms Rocked by Kasbah Hacker?

U.S. CISA adds SonicWall SonicOS and Palo Alto PAN-OS flaws to its Known Exploited Vulnerabilities catalog

Security Affairs newsletter Round 511 by Pierluigi Paganini – INTERNATIONAL EDITION

The Silent Breach: How E-Waste Fuels Cybercrime

NEW TECH: Trend Micro flattens cyber risks — from software development to deployment

Security Affairs newsletter Round 500 by Pierluigi Paganini – INTERNATIONAL EDITION

A Defense-in-Depth Approach Could Stop the Next Big Hack in its Tracks

Palo Alto Networks addresses tens of serious issues in PAN-OS

Stay Connected