Security Affairs

JANUARY 8, 2025

SonicWall warns customers to address an authentication bypass vulnerability in its firewall’s SonicOS that is “susceptible to actual exploitation.” All customers are encouraged to upgrade their firewalls to the latest MR listed below.” hardware firewalls: SonicOS 6.5.5.1-6n NSv firewalls: SonicOS 6.5.4.v-21s-RC2457

Firewall 117

Firewall Firmware VPN Authentication 117

Security Affairs

NOVEMBER 16, 2024

Palo Alto Networks confirmed active exploitation of a zero-day in its PAN-OS firewall and released new indicators of compromise (IoCs). Last week, Palo Alto Networks warned customers to limit access to their next-gen firewall management interface due to a potential remote code execution vulnerability (CVSSv4.0 Base Score: 9.3)

Firewall 129

Firewall Internet Internet VPN 129

Security Affairs

NOVEMBER 8, 2024

Palo Alto Networks warns customers to restrict access to their next-generation firewalls because of a potential RCE flaw in the PAN-OS management interface. Palo Alto Networks warns customers to limit access to their next-gen firewall management interface due to a potential remote code execution vulnerability in PAN-OS.

Firewall 119

Firewall Authentication Internet Internet 119

Security Affairs

JANUARY 15, 2025

. “The build date coded in the last number block also points to the same date range: None of the firewall firmwares examined had been compiled after September 14, 2022.” “As many as 80 different device types can be found in the data leak, with the FortiGate Firewall 40F and 60F being the most widespread.

VPN 133

VPN Passwords Firewall Firmware 133

Security Affairs

MARCH 14, 2025

Operators behind the SuperBlack ransomware exploited two vulnerabilities in Fortinet firewalls for recent attacks. “When the firewall had VPN capabilities, the threat actor created local VPN user accounts with names resembling legitimate accounts but with an added digit at the end. 13.73.13.73, 8.8.8.8, ” reads the report.

Firewall 68

Firewall Ransomware VPN Encryption 68

Security Affairs

DECEMBER 27, 2024

An unauthenticated attacker can exploit this vulnerability to reboot the firewall by sending a malicious packet through its data plane. Repeated exploitation forces the firewall into maintenance mode. Repeated attempts to trigger this condition will cause the firewall to enter maintenance mode.” ” reads the advisory.

DNS 115

DNS Firewall Spyware Software 115

Security Affairs

NOVEMBER 15, 2024

The vulnerabilities reside in the Palo Alto Networks’ Expedition solution, which is a migration tool designed to help organizations move configurations from other firewall platforms (like Check Point, Cisco, and others) to Palo Alto’s PAN-OS. reads the advisory. reads the advisory.

Firewall 111

Firewall Passwords Authentication Phishing 111

Security Affairs

OCTOBER 29, 2024

“An improper access control vulnerability has been identified in the SonicWall SonicOS management access and SSLVPN, potentially leading to unauthorized resource access and in specific conditions, causing the firewall to crash.” ” Prior to August 2024, Fog and Akira ransomware attacks targeted a variety of firewall brands.

VPN 132

VPN Ransomware Firewall Internet 132

Security Affairs

APRIL 11, 2024

Palo Alto Networks fixed several vulnerabilities in its PAN-OS operating system, including 3 issues that can trigger a DoS condition on its firewalls. Repeated attacks can eventually trigger a DoS condition by forcing the firewall into maintenance mode, requiring manual intervention to restore online functionality.

Firewall 139

Firewall Software Engineering Authentication 139

Security Affairs

AUGUST 26, 2024

SonicWall addressed a critical flaw in its firewalls that could allow attackers to achieve unauthorized access to the devices. SonicWall has released security updates to address a critical vulnerability, tracked as CVE-2024-40766 (CVSS score: 9.3), in its firewalls. 13o Gen 6 Firewalls – 6.5.2.8-2n 5035 and older versions.”

Firewall 128

Firewall Firmware Malware Hacking 128

Security Affairs

DECEMBER 15, 2023

Security flaws in Netgate pfSense firewall solution can potentially lead to arbitrary code execution on vulnerable devices. pfSense is a popular open-source firewall solution maintained by Netgate, researchers discovered multiple security issues affecting it. ” reads the analysis published by SonarSource. and pfSense Plus 23.09.

Firewall 141

Firewall Phishing Authentication Hacking 141

Security Affairs

OCTOBER 9, 2024

Palo Alto fixed critical flaws in PAN-OS firewalls, warning that attackers could chain these vulnerabilities to hijack the devices. Palo Alto Networks addressed multiple vulnerabilities that an attacker can chain to hijack PAN-OS firewalls. ” reads the advisory. ” reads the advisory. ” reads the advisory.

Firewall 130

Firewall Passwords Authentication Phishing 130

Security Affairs

FEBRUARY 27, 2024

Taiwanese vendor Zyxel warns of security vulnerabilities in its firewalls and access points, including a remote code execution flaw. Taiwanese networking vendor Zyxel addressed four vulnerabilities, respectively tracked as CVE-2023-6397 , CVE-2023-6398 , CVE-2023-6399 , and CVE-2023-6764 , in its firewalls and access points.

Firewall 139

Firewall VPN Authentication Hacking 139

Security Affairs

SEPTEMBER 19, 2023

Researchers discovered approximately 12,000 Juniper SRX firewalls and EX switches vulnerable to a recently disclosed CVE-2023-36845 RCE flaw. VulnCheck researchers discovered approximately 12,000 internet-exposed Juniper SRX firewalls and EX switches that are vulnerable to the recently disclosed remote code execution flaw CVE-2023-36845.

Firewall 143

Firewall Internet Internet Authentication 143

Security Affairs

JANUARY 15, 2024

Researchers from Bishop Fox found over 178,000 SonicWall next-generation firewalls (NGFW) publicly exploitable. Researchers from Bishop Fox used BinaryEdge source data to find SonicWall firewalls with management interfaces exposed to the internet.

Firewall 144

Firewall Hacking Firmware Internet 144

Schneier on Security

JULY 3, 2024

Moreover, gaining root access would enable attackers to bypass critical security mechanisms such as firewalls, intrusion detection systems, and logging mechanisms, further obscuring their activities.

Firewall 347

Firewall Data breaches Malware Risk 347

SecureWorld News

DECEMBER 8, 2024

This approach poses a significant threat, as sensitive information transmitted today could be decrypted in the future. For example, in the financial sector, if a quantum computer breaks encryption on data in transit, a threat actor could access confidential information, resulting in severe financial and reputational damage.

Encryption 119

Encryption Firewall Firmware Education 119

Security Affairs

FEBRUARY 19, 2025

Palo Alto Networks warns that the vulnerability CVE-2025-0111 is actively exploited with two other flaws to compromise PAN-OS firewalls. Palo Alto Networks warns that threat actors are chaining the vulnerability CVE-2025-0111 with two other vulnerabilities, tracked as CVE-2025-0108 with CVE-2024-9474 , to compromise PAN-OS firewalls.

Firewall 108

Firewall Authentication Architecture Internet 108

Security Affairs

MAY 18, 2025

“While inverters are built to allow remote access for updates and maintenance, the utility companies that use them typically install firewalls to prevent direct communication back to China.” ” reported Reuters. experts who strip down equipment hooked up to grids to check for security issues, the two people said.”

Energy and Utilities 145

Energy and Utilities Manufacturing Government Hacking 145

Security Affairs

MAY 1, 2024

The threat actors appear to have the capability to control China’s Great Firewall and were observed utilizing a novel technique involving fake DNS MX records. The experts noticed a spike in activity observed in September 2023. However, the Infoblox researchers have yet to discover the motivation behind the attacks.

DNS 142

DNS Firewall DDOS Hacking 142

Security Affairs

OCTOBER 24, 2024

Cisco addressed multiple vulnerabilities in Adaptive Security Appliance (ASA), Secure Firewall Management Center (FMC), and Firepower Threat Defense (FTD) products, including an actively exploited flaw tracked as CVE-2024-20481. The vulnerability CVE-2024-20481 (CVSS score of 5.8)

VPN 125

VPN Firewall Passwords Software 125

Security Affairs

MARCH 29, 2024

Cisco warns customers of password-spraying attacks that have been targeting Remote Access VPN (RAVPN) services of Cisco Secure Firewall devices. Cisco is warning customers of password-spraying attacks that have been targeting Remote Access VPN (RAVPN) services configured on Cisco Secure Firewall devices.

Firewall 134

Firewall Passwords VPN Authentication 134

Krebs on Security

AUGUST 27, 2019

Imperva , a leading provider of Internet firewall services that help Web sites block malicious cyberattacks, alerted customers on Tuesday that a recent data breach exposed email addresses, scrambled passwords, API keys and SSL certificates for a subset of its firewall users. Redwood Shores, Calif.-based Image: Imperva.

Cybersecurity 278

Cybersecurity Firewall Passwords Data breaches 278

The Last Watchdog

MARCH 19, 2025

Customers use Knocknoc to protect VPNs and firewalls, IP cameras, payroll systems, file transfer appliances, bastion hosts and other applications and network services. About Knocknoc: For more information at [link] Media Contact: Adam Pointon, Cofounder & CEO, Knocknoc.io, hello@knocknoc.io

Technology 130

Technology Telecommunications Media Firewall 130

Security Affairs

JANUARY 12, 2024

Juniper Networks fixed a critical pre-auth remote code execution (RCE) flaw, tracked as CVE-2024-21591, in its SRX Series firewalls and EX Series switches. ” reads the advisory published by the vendor. “This issue is caused by use of an insecure function allowing an attacker to overwrite arbitrary memory.”

Firewall 136

Firewall Hacking Software Information Security 136

The Last Watchdog

OCTOBER 23, 2024

INE Security advises businesses to secure their network by using firewalls, encrypting data, and regularly updating security software. outside the house or business facility) For more information about cybersecurity training programs that can help protect small business, users can visit security.ine.com.

Small Business 162

Small Business Data breaches Backups Passwords 162

Security Affairs

MAY 24, 2024

Introduction to TLS and Certificate Transparency Log Securing Internet communications is crucial for maintaining the confidentiality and integrity of information in transit. Although the Certificate Transparency Log is designed to improve security and transparency, its public nature leads to known Information Disclosure risks.

DNS 138

DNS Firewall Manufacturing Internet 138

Security Affairs

NOVEMBER 7, 2024

Palo Alto Networks Expedition is a tool designed to help users transition to and optimize Palo Alto Networks’ next-generation firewalls. It assists with the migration of configurations from other firewall vendors and legacy Palo Alto Networks devices to newer models.

Firewall 128

Firewall Authentication Accountability Risk 128

Security Affairs

APRIL 19, 2025

. “It is important to note that even fully patched firewall devices may still become compromised if accounts use poor password hygiene.” Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs hacking,Remote Code Execution)

Firewall 109

Firewall Passwords VPN Accountability 109

Security Affairs

APRIL 24, 2024

Nation-state actor UAT4356 has been exploiting two zero-days in ASA and FTD firewalls since November 2023 to breach government networks. Additionally, the Line Runner was observed retrieving staged information facilitated by the Line Dancer component.

Firewall 135

Firewall Government VPN Hacking 135

eSecurity Planet

NOVEMBER 6, 2024

Cookies play a crucial role in enhancing your online experience, but they can also be exploited by cybercriminals to access sensitive information. Deploy Malware Once malware is on your device, it can extract sensitive data, including personal information. Session Hijacking Attackers can take over your session by collecting cookies.

Identity Theft 109

Identity Theft Passwords Phishing Accountability 109

Malwarebytes

NOVEMBER 6, 2024

A stolen or lost device is stressful enough without having to worry about confidential information. Use a firewall and VPN A firewall protects an entry point to a network while a VPN creates an encrypted tunnel between two networks. Know what legal body you need to inform in case of a breach.

Small Business 104

Small Business Backups Firewall VPN 104

Security Affairs

OCTOBER 29, 2024

“Through Eurojust, authorities were able to quickly exchange information and coordinate actions to take down the infostealers.” Update software : Keep your operating system, security software, and firewall up to date to patch vulnerabilities. ” reads the press release published by Eurojust.

Identity Theft 128

Identity Theft Malware Passwords Banking 128

eSecurity Planet

NOVEMBER 6, 2024

In a stunning blow to the city’s cybersecurity defenses, Columbus, Ohio, recently became the target of a massive cyberattack that exposed over half a million residents’ sensitive information. terabytes of sensitive information compromised, the breach affected approximately 500,000 residents, nearly 55% of the city’s population.

Ransomware 113

Ransomware Authentication Identity Theft Penetration Testing 113

Security Affairs

DECEMBER 3, 2024

Cybersecurity and Infrastructure Security Agency (CISA) adds ProjectSend, North Grid Proself, and Zyxel firewalls bugs to its Known Exploited Vulnerabilities catalog. Attackers can use malformed XML requests to access arbitrary server files containing account information. appears to have been exploited by attackers in the wild.

Firewall 115

Firewall Authentication Accountability Firmware 115

eSecurity Planet

OCTOBER 15, 2024

Strengthen Perimeter Defenses Firewalls and intrusion detection systems (IDS): Firewalls are the first line of defense, blocking unauthorized access to the network, while IDS helps monitor network traffic for suspicious activity. Here are key strategies to prevent cyberattacks like the American Water cyber breach.

Cybersecurity 133

Cybersecurity Penetration Testing Cyber threats Firewall 133

Krebs on Security

AUGUST 2, 2019

But new information indicates the methods she deployed have been well understood for years. The misconfiguration of the WAF allowed the intruder to trick the firewall into relaying requests to a key back-end resource on the AWS platform. He also acknowledged that doing so could break a lot of backwards compatibility within AWS.

Hacking 275

Hacking Firewall Data breaches Software 275