Security Affairs

NOVEMBER 8, 2024

Palo Alto Networks warns customers to restrict access to their next-generation firewalls because of a potential RCE flaw in the PAN-OS management interface. Palo Alto Networks warns customers to limit access to their next-gen firewall management interface due to a potential remote code execution vulnerability in PAN-OS.

Firewall 114

Firewall Authentication Internet Internet 114

Security Affairs

JANUARY 15, 2025

. “The build date coded in the last number block also points to the same date range: None of the firewall firmwares examined had been compiled after September 14, 2022.” “As many as 80 different device types can be found in the data leak, with the FortiGate Firewall 40F and 60F being the most widespread.

VPN 127

VPN Passwords Firewall Firmware 127

Security Affairs

MARCH 14, 2025

Operators behind the SuperBlack ransomware exploited two vulnerabilities in Fortinet firewalls for recent attacks. “When the firewall had VPN capabilities, the threat actor created local VPN user accounts with names resembling legitimate accounts but with an added digit at the end. 13.73.13.73, 8.8.8.8, ” reads the report.

Firewall 64

Firewall Ransomware VPN Encryption 64

Security Affairs

DECEMBER 27, 2024

An unauthenticated attacker can exploit this vulnerability to reboot the firewall by sending a malicious packet through its data plane. Repeated exploitation forces the firewall into maintenance mode. Repeated attempts to trigger this condition will cause the firewall to enter maintenance mode.” ” reads the advisory.

DNS 111

DNS Firewall Spyware Software 111

Security Affairs

APRIL 11, 2024

Palo Alto Networks fixed several vulnerabilities in its PAN-OS operating system, including 3 issues that can trigger a DoS condition on its firewalls. Repeated attacks can eventually trigger a DoS condition by forcing the firewall into maintenance mode, requiring manual intervention to restore online functionality.

Firewall 135

Firewall Software Engineering Authentication 135

Security Affairs

DECEMBER 15, 2023

Security flaws in Netgate pfSense firewall solution can potentially lead to arbitrary code execution on vulnerable devices. pfSense is a popular open-source firewall solution maintained by Netgate, researchers discovered multiple security issues affecting it. ” reads the analysis published by SonarSource. and pfSense Plus 23.09.

Firewall 138

Firewall Phishing Authentication Hacking 138

Security Affairs

AUGUST 26, 2024

SonicWall addressed a critical flaw in its firewalls that could allow attackers to achieve unauthorized access to the devices. SonicWall has released security updates to address a critical vulnerability, tracked as CVE-2024-40766 (CVSS score: 9.3), in its firewalls. 13o Gen 6 Firewalls – 6.5.2.8-2n 5035 and older versions.”

Firewall 123

Firewall Firmware Malware Internet 123

Security Affairs

DECEMBER 3, 2023

Taiwanese vendor Zyxel addressed tens of vulnerabilities in its firewalls and access points. CVE-2023-35139 – A cross-site scripting (XSS) vulnerability in the CGI program of some firewall versions could allow an unauthenticated LAN-based attacker to store malicious scripts in a vulnerable device.

Firewall 127

Firewall Authentication VPN Cyber Attacks 127

Security Affairs

JANUARY 15, 2024

Researchers from Bishop Fox found over 178,000 SonicWall next-generation firewalls (NGFW) publicly exploitable. Researchers from Bishop Fox used BinaryEdge source data to find SonicWall firewalls with management interfaces exposed to the internet.

Firewall 142

Firewall Hacking Firmware Internet 142

Security Affairs

OCTOBER 9, 2024

Palo Alto fixed critical flaws in PAN-OS firewalls, warning that attackers could chain these vulnerabilities to hijack the devices. Palo Alto Networks addressed multiple vulnerabilities that an attacker can chain to hijack PAN-OS firewalls. ” reads the advisory. ” reads the advisory. ” reads the advisory.

Firewall 125

Firewall Passwords Authentication Phishing 125

Schneier on Security

JULY 3, 2024

Moreover, gaining root access would enable attackers to bypass critical security mechanisms such as firewalls, intrusion detection systems, and logging mechanisms, further obscuring their activities.

Firewall 348

Firewall Data breaches Malware Risk 348

Security Affairs

SEPTEMBER 19, 2023

Researchers discovered approximately 12,000 Juniper SRX firewalls and EX switches vulnerable to a recently disclosed CVE-2023-36845 RCE flaw. VulnCheck researchers discovered approximately 12,000 internet-exposed Juniper SRX firewalls and EX switches that are vulnerable to the recently disclosed remote code execution flaw CVE-2023-36845.

Firewall 140

Firewall Internet Internet Authentication 140

Security Affairs

FEBRUARY 27, 2024

Taiwanese vendor Zyxel warns of security vulnerabilities in its firewalls and access points, including a remote code execution flaw. Taiwanese networking vendor Zyxel addressed four vulnerabilities, respectively tracked as CVE-2023-6397 , CVE-2023-6398 , CVE-2023-6399 , and CVE-2023-6764 , in its firewalls and access points.

Firewall 135

Firewall VPN Authentication Hacking 135

SecureWorld News

DECEMBER 8, 2024

This approach poses a significant threat, as sensitive information transmitted today could be decrypted in the future. For example, in the financial sector, if a quantum computer breaks encryption on data in transit, a threat actor could access confidential information, resulting in severe financial and reputational damage.

Encryption 120

Encryption Firewall Education Firmware 120

Security Affairs

FEBRUARY 19, 2025

Palo Alto Networks warns that the vulnerability CVE-2025-0111 is actively exploited with two other flaws to compromise PAN-OS firewalls. Palo Alto Networks warns that threat actors are chaining the vulnerability CVE-2025-0111 with two other vulnerabilities, tracked as CVE-2025-0108 with CVE-2024-9474 , to compromise PAN-OS firewalls.

Firewall 104

Firewall Authentication Architecture Internet 104

Security Affairs

MAY 18, 2025

“While inverters are built to allow remote access for updates and maintenance, the utility companies that use them typically install firewalls to prevent direct communication back to China.” ” reported Reuters. experts who strip down equipment hooked up to grids to check for security issues, the two people said.”

Energy and Utilities 144

Energy and Utilities Manufacturing Government Hacking 144

Security Affairs

MAY 1, 2024

The threat actors appear to have the capability to control China’s Great Firewall and were observed utilizing a novel technique involving fake DNS MX records. The experts noticed a spike in activity observed in September 2023. However, the Infoblox researchers have yet to discover the motivation behind the attacks.

DNS 139

DNS Firewall DDOS Hacking 139

Krebs on Security

AUGUST 27, 2019

Imperva , a leading provider of Internet firewall services that help Web sites block malicious cyberattacks, alerted customers on Tuesday that a recent data breach exposed email addresses, scrambled passwords, API keys and SSL certificates for a subset of its firewall users. Redwood Shores, Calif.-based Image: Imperva.

Cybersecurity 278

Cybersecurity Firewall Passwords Data breaches 278

Security Affairs

MARCH 29, 2024

Cisco warns customers of password-spraying attacks that have been targeting Remote Access VPN (RAVPN) services of Cisco Secure Firewall devices. Cisco is warning customers of password-spraying attacks that have been targeting Remote Access VPN (RAVPN) services configured on Cisco Secure Firewall devices.

Firewall 129

Firewall Passwords VPN Authentication 129

Security Affairs

DECEMBER 13, 2023

Sophos backports the patch for CVE-2022-3236 for end-of-life (EOL) firewall firmware versions due to ongoing attacks exploiting the issue. In December 2022, Sophos released security patches to address seven vulnerabilities in Sophos Firewall version 19.5 , including some arbitrary code execution bugs. reads the advisory. “A

Firmware 128

Firmware Firewall Internet Internet 128

The Last Watchdog

MARCH 19, 2025

Customers use Knocknoc to protect VPNs and firewalls, IP cameras, payroll systems, file transfer appliances, bastion hosts and other applications and network services. About Knocknoc: For more information at [link] Media Contact: Adam Pointon, Cofounder & CEO, Knocknoc.io, hello@knocknoc.io

Technology 130

Technology Media Telecommunications Authentication 130

The Last Watchdog

OCTOBER 23, 2024

INE Security advises businesses to secure their network by using firewalls, encrypting data, and regularly updating security software. outside the house or business facility) For more information about cybersecurity training programs that can help protect small business, users can visit security.ine.com.

Small Business 162

Small Business Data breaches Backups Passwords 162

Security Affairs

JANUARY 12, 2024

Juniper Networks fixed a critical pre-auth remote code execution (RCE) flaw, tracked as CVE-2024-21591, in its SRX Series firewalls and EX Series switches. ” reads the advisory published by the vendor. “This issue is caused by use of an insecure function allowing an attacker to overwrite arbitrary memory.”

Firewall 131

Firewall Hacking Software Information Security 131

Security Affairs

MAY 24, 2024

Introduction to TLS and Certificate Transparency Log Securing Internet communications is crucial for maintaining the confidentiality and integrity of information in transit. Although the Certificate Transparency Log is designed to improve security and transparency, its public nature leads to known Information Disclosure risks.

DNS 134

DNS Manufacturing Firewall Internet 134

eSecurity Planet

NOVEMBER 6, 2024

Cookies play a crucial role in enhancing your online experience, but they can also be exploited by cybercriminals to access sensitive information. Deploy Malware Once malware is on your device, it can extract sensitive data, including personal information. Session Hijacking Attackers can take over your session by collecting cookies.

Identity Theft 109

Identity Theft Passwords Phishing Accountability 109

Security Affairs

APRIL 24, 2024

Nation-state actor UAT4356 has been exploiting two zero-days in ASA and FTD firewalls since November 2023 to breach government networks. Additionally, the Line Runner was observed retrieving staged information facilitated by the Line Dancer component.

Firewall 130

Firewall Government VPN Authentication 130

Security Affairs

NOVEMBER 7, 2024

Palo Alto Networks Expedition is a tool designed to help users transition to and optimize Palo Alto Networks’ next-generation firewalls. It assists with the migration of configurations from other firewall vendors and legacy Palo Alto Networks devices to newer models.

Firewall 123

Firewall Authentication Accountability Risk 123

Security Affairs

APRIL 19, 2025

. “It is important to note that even fully patched firewall devices may still become compromised if accounts use poor password hygiene.” Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs hacking,Remote Code Execution)

Passwords 104

Passwords VPN Firewall Accountability 104

Malwarebytes

NOVEMBER 6, 2024

A stolen or lost device is stressful enough without having to worry about confidential information. Use a firewall and VPN A firewall protects an entry point to a network while a VPN creates an encrypted tunnel between two networks. Know what legal body you need to inform in case of a breach.

Small Business 101

Small Business Backups Firewall VPN 101

eSecurity Planet

NOVEMBER 6, 2024

In a stunning blow to the city’s cybersecurity defenses, Columbus, Ohio, recently became the target of a massive cyberattack that exposed over half a million residents’ sensitive information. terabytes of sensitive information compromised, the breach affected approximately 500,000 residents, nearly 55% of the city’s population.

Ransomware 113

Ransomware Authentication Identity Theft Penetration Testing 113

The Last Watchdog

MARCH 6, 2021

Remote workers face having both their personal and work-related information compromised. This keeps your information away from prying eyes, such as internet service providers and hackers. Set up firewalls. Firewalls act as a defense line in preventing the possibility of threats entering your system. Back-up your data.

VPN 214

VPN Passwords Firewall Risk 214

Security Affairs

OCTOBER 29, 2024

“Through Eurojust, authorities were able to quickly exchange information and coordinate actions to take down the infostealers.” Update software : Keep your operating system, security software, and firewall up to date to patch vulnerabilities. ” reads the press release published by Eurojust.

Identity Theft 122

Identity Theft Passwords Malware Banking 122

eSecurity Planet

OCTOBER 15, 2024

Strengthen Perimeter Defenses Firewalls and intrusion detection systems (IDS): Firewalls are the first line of defense, blocking unauthorized access to the network, while IDS helps monitor network traffic for suspicious activity. Here are key strategies to prevent cyberattacks like the American Water cyber breach.

Cybersecurity 133

Cybersecurity Penetration Testing Cyber threats Firewall 133

Security Affairs

DECEMBER 3, 2024

Cybersecurity and Infrastructure Security Agency (CISA) adds ProjectSend, North Grid Proself, and Zyxel firewalls bugs to its Known Exploited Vulnerabilities catalog. Attackers can use malformed XML requests to access arbitrary server files containing account information. appears to have been exploited by attackers in the wild.

Firewall 111

Firewall Authentication Accountability Firmware 111

Krebs on Security

AUGUST 2, 2019

But new information indicates the methods she deployed have been well understood for years. The misconfiguration of the WAF allowed the intruder to trick the firewall into relaying requests to a key back-end resource on the AWS platform. He also acknowledged that doing so could break a lot of backwards compatibility within AWS.

Hacking 275

Hacking Firewall Data breaches Software 275

Joseph Steinberg

FEBRUARY 9, 2021

I was recently asked to take a look at CrowdSec – a new, free, open-source information security technology created in France that seeks to improve the current situation. In some ways, CrowdSec mimics the behavior of a constantly-self-updating, massive, multi-party, and multi-network firewall. CrowdSec released version 1.0

Firewall 212

Firewall Technology Artificial Intelligence Risk 212

Security Affairs

DECEMBER 4, 2024

Strong segmentation with firewalls and DMZs, securing VPN gateways, and ensuring encrypted traffic with TLS v1.3 The cyber spies stole information belonging to targeted individuals that was subject to U.S. Enhancing secure logging, isolating device management, and enforcing strict access control lists (ACLs) are key strategies.

Telecommunications 110

Telecommunications Government Mobile Cyber threats 110