Security Affairs

FEBRUARY 27, 2024

Taiwanese vendor Zyxel warns of security vulnerabilities in its firewalls and access points, including a remote code execution flaw. Taiwanese networking vendor Zyxel addressed four vulnerabilities, respectively tracked as CVE-2023-6397 , CVE-2023-6398 , CVE-2023-6399 , and CVE-2023-6764 , in its firewalls and access points.

Firewall 103

Firewall VPN Authentication Hacking 103

Heimadal Security

JUNE 28, 2021

Cybercriminals’ focus stays on the Zyxel firewalls and VPN products. Have Only Zyxel Firewalls and VPN Been Compromised? The post Zyxel Firewalls and VPN Servers: Victims of a New Cyberattack appeared first on Heimdal Security Blog. In a Twitter shared post containing […].

VPN 90

VPN Firewall Manufacturing Cybersecurity 90

Security Boulevard

JUNE 29, 2022

Show notes for series 2, episode 2 Is your firewall as fast as you think? Do you need a personal VPN? The post DE:CODED – Firewall speeds and VPN risks appeared first on SE Labs Blog. The post DE:CODED – Firewall speeds and VPN risks appeared first on Security Boulevard.

VPN 52

VPN Firewall Risk Small Business 52

Bleeping Computer

MARCH 31, 2022

Network equipment company Zyxel has updated the firmware of several of its business-grade firewall and VPN products to address a critical-severity vulnerability that could give attackers administrator-level access to affected devices. [.].

Firewall 91

Firewall VPN Firmware 91

Security Affairs

JANUARY 1, 2021

Impacted devices include Unified Security Gateway (USG), ATP, USG FLEX and VPN firewalls products. Affected product series Patch available in Firewalls ATP series running firmware ZLD V4.60 2020 VPN series running firmware ZLD V4.60 Someone could for example change firewall settings to allow or block certain traffic.

Firewall 134

Firewall VPN Firmware Passwords 134

Security Affairs

JUNE 24, 2021

Networking equipment giant Zyxel warns customers of a series of attacks that have been targeting some of its enterprise firewall and VPN devices. Networking equipment vendor Zyxel warned its customers of a series of attacks that have been targeting some of its enterprise firewall and VPN server solutions.

VPN 102

VPN Firewall Firmware Authentication 102

Tech Republic Security

SEPTEMBER 19, 2022

Grab a special deal on the secure Ivacy virtual private network and NAT firewall today. The post Get a lifetime of VPN protection for just $60 appeared first on TechRepublic.

VPN 126

VPN Firewall Software Network Security 126

Bleeping Computer

JUNE 3, 2023

Zyxel has published a security advisory containing guidance on protecting firewall and VPN devices from ongoing attacks and detecting signs of exploitation. [.]

Firewall 114

Firewall VPN 114

Security Affairs

APRIL 1, 2022

Zyxel issued security updates for a critical vulnerability that affects some of its business firewall and VPN devices. Networking equipment vendor Zyxel has pushed security updates for a critical flaw, tracked as CVE-2022-0342 (CVSS 9.8), that affects some of its business firewall and VPN products. Patch 1 VPN ZLD V4.30

Firewall 83

Firewall VPN Firmware Authentication 83

The Hacker News

MARCH 31, 2022

Networking equipment maker Zyxel has pushed security updates for a critical vulnerability affecting some of its business firewall and VPN products that could enable an attacker to take control of the devices. "An

Firewall 85

Firewall VPN Authentication 85

Krebs on Security

FEBRUARY 26, 2020

Today, Zyxel acknowledged the same flaw is present in many of its firewall products. “We’ve now completed the investigation of all Zyxel products and found that firewall products running specific firmware versions are also vulnerable,” Zyxel wrote in an email to KrebsOnSecurity. Patch 0 through ZLD V4.35 My advice?

Firewall 243

Firewall Firmware VPN IoT 243

Bleeping Computer

APRIL 6, 2022

American cybersecurity company Palo Alto Networks warned customers on Wednesday that some of its firewall, VPN, and XDR products are vulnerable to a high severity OpenSSL infinite loop bug disclosed three weeks ago [.].

Firewall 145

Firewall VPN Cybersecurity 145

Cisco Security

MAY 26, 2021

This is where Cisco Secure Firewall Cloud Native (SFCN) comes in. Cisco Secure Firewall Cloud Native brings together the benefits of Kubernetes and Cisco’s industry-leading security technologies, providing a resilient architecture for infrastructure security at scale. Redis DB: The Redis database has information on VPN sessions.

Firewall 106

Firewall VPN Architecture DNS 106

Tech Republic Security

MARCH 8, 2024

Unlocator VPN + Free Smart DNS blasts through firewalls, censorship and geo-restrictions so you will always be able to access your favorite content. Use code ENJOY20 at checkout.

DNS 121

DNS VPN Firewall 121

The Hacker News

JUNE 11, 2023

Fortinet has released patches to address a critical security flaw in its FortiGate firewalls that could be abused by a threat actor to achieve remote code execution.

Firewall 98

Firewall VPN Authentication 98

Security Affairs

DECEMBER 3, 2023

Taiwanese vendor Zyxel addressed tens of vulnerabilities in its firewalls and access points. CVE-2023-35139 – A cross-site scripting (XSS) vulnerability in the CGI program of some firewall versions could allow an unauthenticated LAN-based attacker to store malicious scripts in a vulnerable device.

Firewall 96

Firewall Authentication VPN Cyber Attacks 96

Security Affairs

JUNE 1, 2023

Threat actors are actively exploiting a command injection flaw, tracked as CVE-2023-28771, in Zyxel firewalls to install malware. Threat actors are actively attempting to exploit a command injection vulnerability, tracked as CVE-2023-28771 , that impacts Zyxel firewalls. in its firewall devices. VPN ZLD V4.60

Firewall 89

Firewall Firmware VPN DDOS 89

Security Affairs

JUNE 12, 2023

Fortinet released security updates to fix a critical security flaw in its FortiGate firewalls that lead to remote code execution. Fortinet has released security patches to address a critical security vulnerability, tracked as CVE-2023-27997, in its FortiGate firewalls. This is reachable pre-authentication, on every SSL VPN appliance.

Firewall 80

Firewall VPN Authentication Media 80

eSecurity Planet

JANUARY 16, 2024

Keep an eye out for security announcements from your firewall vendors; it’s possible additional similar vulnerabilities will come to light. The problem: Juniper Networks released a bulletin about a remote code execution vulnerability in its SRX firewalls and EX switches. This vulnerability is tracked as CVE-2024-21591.

Firewall 93

Firewall Firmware IoT Authentication 93

Security Affairs

APRIL 28, 2023

A vulnerability impacting Zyxel firewalls, tracked as CVE-2023-28771, can be exploited to execute arbitary code on vulnerable devices. Researchers from TRAPA Security have discovered a critical remote code execution vulnerability, tracked as CVE-2023-28771 (CVSS score 9.8), impacting Zyxel Firewall. through 5.35. through 5.35.

Firewall 92

Firewall Firmware VPN Authentication 92

Malwarebytes

MARCH 11, 2021

Virtual Private Networks ( VPN s) are popular but often misunderstood. VPNs are for illegal activity. Some people think that VPNs are only useful for doing things like torrenting, accessing geo-locked content, or getting around work/school/government firewalls. I don’t need a mobile VPN.

VPN 140

VPN Encryption Mobile Surveillance 140

Security Affairs

JULY 3, 2023

Researchers reported that there are 490,000 Fortinet firewalls exposing SSL VPN interfaces on the internet, and roughly 69% of them are still vulnerable to CVE-2023-27997. For this reason, if the customer has SSL-VPN enabled, Fortinet is advising customers to take immediate action to upgrade to the most recent firmware release.

Firewall 80

Firewall VPN Firmware Internet 80

The Hacker News

JULY 3, 2023

No less than 330000 FortiGate firewalls are still unpatched and vulnerable to CVE-2023-27997, a critical security flaw affecting Fortinet devices that have come under active exploitation in the wild.

Firewall 90

Firewall VPN Internet Internet 90

Bleeping Computer

JUNE 22, 2021

New findings have emerged that shed light on a critical SonicWall vulnerability disclosed last year, which affected over 800,000 VPN firewalls and was initially thought to have been patched.

Firewall 136

Firewall VPN 136

Security Affairs

SEPTEMBER 8, 2023

CISA warned that nation-state actors are exploiting flaws in Fortinet FortiOS SSL-VPN and Zoho ManageEngine ServiceDesk Plus. Cybersecurity and Infrastructure Security Agency (CISA) warned that nation-state actors are exploiting security vulnerabilities in Fortinet FortiOS SSL-VPN and Zoho ManageEngine ServiceDesk Plus.

VPN 116

VPN Firewall Accountability Cybersecurity 116

Bleeping Computer

MAY 15, 2022

Hackers have started to exploit a recently patched critical vulnerability, tracked as CVE-2022-30525, that affects Zyxel firewall and VPN devices for businesses. [.].

Firewall 99

Firewall VPN 99

Security Affairs

MAY 26, 2022

Zyxel addressed multiple vulnerabilities impacting many of its products, including APs, AP controllers, and firewalls. Zyxel has released security updates to address multiple vulnerabilities affecting multiple products, including firewall, AP, and AP controller products. Follow me on Twitter: @securityaffairs and Facebook.

Firewall 112

Firewall VPN Authentication Cyber Attacks 112

The Hacker News

NOVEMBER 10, 2021

A new zero-day vulnerability has been disclosed in Palo Alto Networks GlobalProtect VPN that could be abused by an unauthenticated network-based attacker to execute arbitrary code on affected devices with root user privileges. Tracked as CVE-2021-3064 (CVSS score: 9.8), the security weakness impacts PAN-OS 8.1

VPN 120

VPN Firewall Cybersecurity 120

Cisco Security

JULY 9, 2021

With Cisco Secure Firewall, organizations are able to build a scalable RAVPN architecture on OCI, providing employees secure remote access to their organization’s resources from any location or endpoint. Design 1 – Load balance RAVPN sessions to multiple firewalls using OCI DNS service. DNS provides an FQDN (example.vpn.com).

Firewall 102

Firewall Architecture DNS VPN 102

Security Affairs

DECEMBER 6, 2022

Sophos addressed several vulnerabilities affecting its Sophos Firewall version 19.5, Sophos has released security patches to address seven vulnerabilities in Sophos Firewall version 19.5 , including some arbitrary code execution bugs. The post Sophos fixed a critical flaw in its Sophos Firewall version 19.5 Pierluigi Paganini.

Firewall 99

Firewall Wireless VPN Hacking 99

Adam Levin

MARCH 19, 2020

Here are five ways VPNs can keep remote employees secure. Better Network and Firewall Protection: By routing an employee’s internet traffic through your company network, you can provide the same firewalls and network-level protection that they’d have working at an office with robust cybersecurity defenses.

VPN 130

VPN Firewall Authentication Passwords 130

Cisco Security

SEPTEMBER 27, 2021

Secure Firewall Threat Defense 7.0 Secure Firewall Threat Defense 7.0 For Cisco Secure Firewall 1000, 2100, 4100 and 9300 series, updating your firewall to Threat Defense 7.0 For Cisco Secure Firewall 1000, 2100, 4100 and 9300 series, updating your firewall to Threat Defense 7.0

Firewall 100

Firewall VPN Mobile Encryption 100

Cisco Security

MAY 17, 2021

With application environments becoming dynamic, there is a desperate need for security tooling, including firewalls, to do the same. Secure Firewall Cloud Native is the latest addition to the Secure Firewall family , modernizing the way enterprises and service providers secure applications at scale.

Firewall 79

Firewall Architecture VPN Network Security 79

Security Affairs

SEPTEMBER 29, 2021

CISA and the NSA agencies have published guidance for securely using virtual private network (VPN) solutions. Cybersecurity and Infrastructure Security Agency (CISA) and the National Security Agency (NSA) have released guidance for increasing the security of virtual private network (VPN) solutions.

VPN 118

VPN Government Firmware Authentication 118

Security Affairs

MARCH 27, 2022

Sophos has addressed a critical vulnerability, tracked as CVE-2022-1040, in its Sophos Firewall that allows remote code execution (RCE). Sophos has fixed an authentication bypass vulnerability, tracked as CVE-2022-1040, that resides in the User Portal and Webadmin areas of Sophos Firewall. and impacts Sophos Firewall versions 18.5

Firewall 83

Firewall Authentication VPN Hacking 83

Security Affairs

JANUARY 20, 2023

An alleged Chinese threat actor was observed exploiting the recently patched CVE-2022-42475 vulnerability in FortiOS SSL-VPN. Researchers from Mandiant reported that suspected Chinese threat actors exploited the recently patched CVE-2022-42475 vulnerability in FortiOS SSL-VPN as a zero-day. firewalls, IPSIDS appliances etc.).

VPN 96

VPN Firewall Internet Internet 96

Security Affairs

SEPTEMBER 24, 2022

Sophos warns that a critical code injection security vulnerability in its Firewall product is actively exploited in the wild. Sophos warns of a critical code injection security vulnerability, tracked as CVE-2022-3236, affecting its Firewall product which is being exploited in the wild. and impacts Firewall versions 18.5

Firewall 75

Firewall VPN Authentication Hacking 75