2014, Firewall and Hacking - Cyber Security Informer

Threat Trends: Firewall

Cisco Security

OCTOBER 19, 2021

In any perimeter defense a key component is firewalls—the proverbial guard towers in your fortifications. In this Threat Trends release, we’ll be looking at Cisco Secure Firewall. The goal is to highlight the common threats that organizations encounter and block with Secure Firewall. Secure Firewall version 7.0

Firewall

Firewall Authentication DNS Accountability

Hackers exploit SQL injection zero-day issue in Sophos firewall

Security Affairs

APRIL 26, 2020

Cybersecurity firm Sophos releases an emergency patch to address an SQL injection flaw in its XG Firewall product that has been exploited in the wild. Cybersecurity firm Sophos has released an emergency patch to address an SQL injection zero-day vulnerability affecting its XG Firewall product that has been exploited in the wild.

Firewall

Firewall Passwords Accountability Advertising

Retail giant Home Depot agrees to a $17.5 million settlement over 2014 data breach

Security Affairs

NOVEMBER 25, 2020

million settlement in a multi-state investigation of the data breach that the company suffered in 2014. million settlement over the 2014 data breach. In 2014, Home Depot revealed that the data breach impacted 56 million customers across the US and Canada. SecurityAffairs – hacking, Data breach). ” . .

Retail

Retail Data breaches Penetration Testing Information Security

Sophos blocked attacks exploiting XG Firewall zero-day to deploy Ransomware

Security Affairs

MAY 21, 2020

Hackers attempted to exploit a zero-day flaw in the Sophos XG firewall to distribute ransomware to Windows machines, but the attack was blocked. It was designed to download payloads intended to exfiltrate XG Firewall-resident data. Sophos was informed of the attacks exploiting the zero-day issue by one of its customers on April 22.

Firewall

Firewall Ransomware Passwords VPN

Cisco fixes 5 critical flaws that could allow router firewall takeover

Security Affairs

JULY 16, 2020

Cisco has released security updates to address critical remote code execution (RCE), authentication bypass, and static default credential vulnerabilities affecting multiple router and firewall devices. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. SecurityAffairs – hacking, Cisco).

Firewall

Firewall Small Business Wireless Advertising

Sophos fixed a critical vulnerability in Cyberoam firewalls

Security Affairs

OCTOBER 10, 2019

A vulnerability in Sophos Cyberoam firewalls could be exploited by an attacker to gain access to a target’s internal network without authentication. Sophos addressed a vulnerability in its Cyberoam firewalls that could be exploited by an attacker to gain access to a company’s internal network without providing a password.

Firewall

Firewall VPN Passwords Internet

Palo Alto Networks fixes a critical flaw in firewall PAN-OS

Security Affairs

JUNE 29, 2020

Palo Alto Networks addressed a critical flaw in the PAN-OS of its next-generation firewalls that could allow attackers to bypass authentication. OS ) that powers its next-generation firewalls that could allow unauthenticated network-based attackers to bypass authentication. SecurityAffairs – hacking, PAN-OS).

Firewall

Firewall Authentication VPN Advertising

Security Affairs newsletter Round 501 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

DECEMBER 8, 2024

Now He Wants to Help You Escape, Too Dozens of Countries Hit in Chinese Telecom Hacking Campaign, Top U.S. officials urge Americans to use encrypted apps amid unprecedented cyberattack The Great Pokmon Go Spy Panic Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs hacking,newsletter)

Artificial Intelligence

Artificial Intelligence Spyware Hacking Ransomware

Actions Target Russian Govt. Botnet, Hydra Dark Market

Krebs on Security

APRIL 7, 2022

Department of Justice (DOJ) says the GRU’s hackers built Cyclops Blink by exploiting previously undocumented security weaknesses in firewalls and routers made by both ASUS and WatchGuard Technologies. A statement from the U.S. SANDWORM AND TRITON. energy facilities. and international companies and entities, including U.S.

Marketing

Marketing Energy and Utilities Malware Ransomware

HP Device Manager flaws expose Windows systems to hack

Security Affairs

OCTOBER 4, 2020

Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. SecurityAffairs – hacking, HP). The post HP Device Manager flaws expose Windows systems to hack appeared first on Security Affairs. Pierluigi Paganini.

Hacking

Hacking Accountability Passwords Advertising

CISA adds Sophos firewall bug to Known Exploited Vulnerabilities Catalog

Security Affairs

APRIL 1, 2022

Cybersecurity and Infrastructure Security Agency (CISA) has added a critical Sophos firewall flaw and seven other issues to its Known Exploited Vulnerabilities Catalog. The CVE-2022-1040 is an authentication bypass vulnerability that resides in the User Portal and Webadmin areas of Sophos Firewall. MR3 (18.5.3) and earlier.

Firewall

Firewall Authentication Hacking Cybersecurity

Unsigned Firmware running on peripherals could expose Windows, Linux systems to hack

Security Affairs

FEBRUARY 18, 2020

Peripheral devices with unsigned firmware can expose Windows and Linux machines to hack, warn experts from firmware security firm Eclypsium. Attackers can plant malicious firmware on a network adapter to intercept or alter traffic or hack into PCI devices to carry out DMA attacks. SecurityAffairs – unsigned firmware, hacking).

Firmware

Firmware Hacking Authentication Advertising

335,923 out of 489,337 Fortinet firewalls vulnerable to CVE-2023-27997

Security Affairs

JULY 3, 2023

Researchers reported that there are 490,000 Fortinet firewalls exposing SSL VPN interfaces on the internet, and roughly 69% of them are still vulnerable to CVE-2023-27997. ” continues the report.

Firewall

Firewall VPN Firmware Internet

Experts hacked 28,000 unsecured printers to raise awareness of printer security issues

Security Affairs

AUGUST 27, 2020

While security experts have been aware of printer vulnerabilities for quite a while, even previous large-scale attacks on printers like the Stackoverflowin hack in 2017 and the PewDiePie hack in 2018 did not seem to shock the public into securing their networked devices. Use a firewall. SecurityAffairs – hacking, printers).

Hacking

Hacking IoT Firmware Internet

Palo Alto Networks addresses tens of serious issues in PAN-OS

Security Affairs

MAY 15, 2020

Palo Alto Networks addressed tens of vulnerabilities in PAN-OS, the software that runs on the company’s next-generation firewalls. Palo Alto Networks has issued security updates to address tens of vulnerabilities in PAN-OS, the software that runs on the company’s next-generation firewalls. Pierluigi Paganini.

Firewall

Firewall Authentication Advertising VPN

FBI is warning of cyber attacks against Windows 7 systems that reached end-of-life

Security Affairs

AUGUST 6, 2020

The Federal Bureau of Investigation is warning companies running Windows 7 systems of the greater risk of getting hacked because the Microsoft OS has reached the end of life on January 14. Ensuring anti-virus, spam filters, and firewalls are up to date, properly configured, and secure.” SecurityAffairs – hacking, Windows).

Cyber Attacks

Cyber Attacks Healthcare Firewall Advertising

French Firms Rocked by Kasbah Hacker?

Krebs on Security

MARCH 2, 2020

A large number of French critical infrastructure firms were hacked as part of an extended malware campaign that appears to have been orchestrated by at least one attacker based in Morocco, KrebsOnSecurity has learned. com , an Arabic-language computer hacking forum. In this two-hour Arabic language YouTube tutorial from 2014 , Fatal.001

DNS

DNS Penetration Testing Malware Hacking

5 Ways to Protect Yourself from IP Address Hacking

Security Affairs

AUGUST 20, 2019

Your IP address represents your digital identity online, hacking it not only allows attackers to access your device or your accounts, but it may cause even bigger damage. Cybercriminals are interested in hacking your IP address for various reasons. The hacked and stolen IPs are often used for carrying out illegal activities.

Hacking

Hacking VPN Internet Internet

Hackers are actively exploiting critical RCE in WordPress sites using File Manager plugin

Security Affairs

SEPTEMBER 2, 2020

Wordfence confirmed the ongoing attack, its Web Application Firewall already blocked over 450,000 exploit attempts during the last several days. “The Wordfence firewall has blocked over 450,000 exploit attempts targeting this vulnerability over the past several days. SecurityAffairs – hacking, File Manager plugin).

Firewall

Firewall Advertising Hacking

Some Zyxel devices can be hacked via DNS requests

Security Affairs

SEPTEMBER 4, 2019

Experts at SEC Consult discovered several security issues in various Zyxel devices that allow to hack them via unauthenticated DNS requests. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. SecurityAffairs – Zyxel, hacking).

DNS

DNS Hacking Firmware Wireless

Millions of Xiongmai video surveillance devices can be easily hacked via cloud feature

Security Affairs

OCTOBER 10, 2018

Millions of Xiongmai video surveillance devices can be easily hacked via cloud feature, a gift for APT groups and cyber crime syndicates. Xiongmai hereinafter) that are open to hack. The “P2P Cloud” feature bypasses firewalls and effectively allows remote connections into private networks. ” concludes SEC Consult.

Surveillance

Surveillance Hacking Firmware Manufacturing

NASA hacked! An unauthorized Raspberry Pi connected to its network was the entry point

Security Affairs

JUNE 23, 2019

NASA Office of Inspector General revealed that the Agency’s network was hacked in April 2018, intruders exfiltrated roughly 500 MB of data related to Mars missions. While an investigation is still ongoing, the Agency announced to have installed additional monitoring agents on its firewalls. SecurityAffairs – NASA, hacking).

Hacking

Hacking Data breaches Advertising Firewall

Palo Alto Networks addresses another high severity issue in PAN-OS devices

Security Affairs

JULY 9, 2020

Palo Alto Networks addressed a new severe vulnerability in the PAN-OS GlobalProtect portal that impacts PAN next-generation firewalls. Recently Palo Alto Network addressed a critical vulnerability , tracked as CVE-2020-2021, affecting the PAN-OS operating system that powers its next-generation firewall. x base score of 10. .

Firewall

Firewall Advertising Authentication Hacking

Ripple20 flaws in Treck TCP/IP stack potentially expose hundreds of millions of devices to hack

Security Affairs

JUNE 16, 2020

Ripple20 vulnerabilities are unique both in their widespread effect and impact due to supply chain effect and being vulnerabilities allowing attackers to bypass NAT and firewalls and take control of devices undetected, with no user interaction required,” reads the JSOF’s report. SecurityAffairs – Ripple20, hacking).

Hacking

Hacking Advertising IoT DNS

Almost 800,000 SonicWall VPN appliances online are vulnerable to CVE-2020-5135

Security Affairs

OCTOBER 16, 2020

. “A buffer overflow vulnerability in SonicOS allows a remote attacker to cause Denial of Service (DoS) and potentially execute arbitrary code by sending a malicious request to the firewall. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. SecurityAffairs – hacking, CVE-2020-5135).

VPN

VPN Firewall Advertising Internet

ZoneAlarm forum site hack exposed data of thousands of users

Security Affairs

NOVEMBER 11, 2019

The ZoneAlarm suite includes antivirus software and firewall solutions to and users and small organizations, it has nearly 100 million downloads. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Hacking

Hacking Data breaches Passwords Advertising

CVE-2020-3452 flaw in Cisco ASA/FTD exploited within hours after the disclosure

Security Affairs

JULY 24, 2020

Cisco fixed CVE-2020-3452 high-severity path traversal flaw in its firewalls that can be exploited by remote attackers to obtain sensitive files from the targeted system. link] Happy Hacking! Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. SecurityAffairs – hacking, CVE-2020-3452).

Firewall

Firewall Advertising Software Hacking

Snake Ransomware isolates infected Systems before encrypting files

Security Affairs

JULY 5, 2020

Snake samples employed in more recent attacks implements the ability to enable and disable the firewall and leverage specific commands to block unwanted connections to the system. ” ~ Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. SecurityAffairs – hacking, SNAKE ransomware).

Encryption

Encryption Ransomware Firewall Backups

Flaws in Siemens SPPA-T3000 control system expose power plants to hack

Security Affairs

DECEMBER 13, 2019

Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. SecurityAffairs – Siemens SPPA-T3000, hacking). The post Flaws in Siemens SPPA-T3000 control system expose power plants to hack appeared first on Security Affairs.

Hacking

Hacking Advertising Firewall Technology

New Ttint IoT botnet exploits two zero-days in Tenda routers

Security Affairs

OCTOBER 5, 2020

Unlike other IoT DDoS botnets, Ttint implements 12 remote access functions such as Socket5 proxy for router devices, tampering with router firewall and DNS settings, executing remote custom system commands. ” ~ Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. SecurityAffairs – hacking, Ttint botnet).

IoT

IoT Firmware Advertising DNS

Expert found a hardcoded SSH Key in Fortinet SIEM appliances

Security Affairs

JANUARY 20, 2020

The feature was implemented to enable connecting to collectors from the supervisor when there is a firewall between the collector and the supervisor. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Authentication

Authentication Advertising Firmware Firewall

Expert released DOS Exploit PoC for Critical Windows RDP Gateway flaws

Security Affairs

JANUARY 24, 2020

. “Simply disabling UDP Transport, or firewalling the UDP port (usually port 3391) is sufficient to prevent exploitation,” explained the popular researcher Marcus Hutchins. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

Advertising

Advertising Firewall Education Engineering

KingComposer fixes a reflected XSS impacting 100,000 WordPress sites

Security Affairs

JULY 10, 2020

We release a firewall rule covering both the patched and unpatched vulnerabilities to our Premium users. July 15, 2020 – Firewall rule becomes available to Wordfence Free users. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

Firewall

Firewall Advertising Hacking Information Security

Microsoft accidentally reveals Wormable Win SMBv3 CVE-2020-0796 Flaw

Security Affairs

MARCH 10, 2020

Waiting for a security update that will address the issue, experts at Cisco Talos recommend disabling SMBv3 compression and blocking the 445 TCP port on client computers and firewalls to mitigate the issue. ” ~ Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Creating a DWORD value called 3.

Advertising

Advertising Firewall Hacking Software

Palo Alto Networks fixes severe Code Execution and DoS flaws in PAN-OS

Security Affairs

SEPTEMBER 10, 2020

Palo Alto Networks addressed critical and high-severity denial-of-service (DoS) and arbitrary code execution vulnerabilities in its PAN-OS firewall software. Palo Alto Networks has released security updates to patch critical and high-severity denial-of-service (DoS) and arbitrary code execution vulnerabilities in its PAN-OS firewall software.

Firewall

Firewall Authentication Advertising Software

Juniper Networks addressed many issues in its products

Security Affairs

JULY 10, 2020

Juniper Networks addressed several vulnerabilities in its firewalls, most of them can be exploited by attackers for denial-of-service (DoS) attacks. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Advertising

Advertising Firmware Firewall Internet

Attackers are hacking NSC Linear eMerge E3 building access systems to launch DDoS attacks

Security Affairs

FEBRUARY 3, 2020

“ SonicWall Capture Labs Threat Research team observe huge hits on our firewalls that attempt to exploit the command injection vulnerability with the below HTTP request.” Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

DDOS

DDOS Hacking Internet Internet

Imperva data Breach: WAF customers’ data exposed

Security Affairs

AUGUST 27, 2019

Security firm Imperva revealed it has suffered a data breach that affecting some customers of its Cloud Web Application Firewall (WAF) product. Cybersecurity firm Imperva disclosed a data breach that has exposed sensitive information for some customers of its Cloud Web Application Firewall (WAF) product, formerly known as Incapsula.

Data breaches

Data breaches Firewall Passwords Advertising

US CISA report shares details on web shells used by Iranian hackers

Security Affairs

SEPTEMBER 16, 2020

A few weeks ago, researchers from Crowdstrike revealed that the Iran-linked APT group tracked as Pioneer Kitten, also known as Fox Kitten or Parisite, is now trying to monetize its efforts by selling access to some of the networks it has hacked to other hackers. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

VPN

VPN Passwords Advertising Password Management

Hackers target Docker servers to deploy the new Kinsing cryptocurrency miner

Security Affairs

APRIL 6, 2020

Experts uncovered a hacking campaign that is breaching Docker clusters to deploy a new crypto-mining malware tracked as Kinsing. Cloud security firm Aqua Security uncovered a hacking campaign carried out during the past months, hackers are scanning the Internet for Docker servers running API ports exposed without a password.

Cryptocurrency

Cryptocurrency Malware Advertising VPN

Using Public Wi-Fi? Your data can be hacked easily! Here’s How…

Security Affairs

MAY 29, 2019

Let’s see how your data can be hacked easily. Logging in through a public network also provides cybercriminals easier access to our account details and password and make your accounts vulnerable to hacking. Protect your device by enabling the firewall on your device. Security Affairs – Public Wi-Fi, hacking ).

Hacking

Hacking VPN Passwords Internet

DoS attack the caused disruption at US power utility exploited a known flaw

Security Affairs

SEPTEMBER 9, 2019

A DoS attack that caused disruptions at a power utility in the United States exploited a flaw in a firewall used in the facility. The incident took place earlier this year, threat actors exploited a known vulnerability in a firewall used by the affected facility to cause disruption. SecurityAffairs – power utility, hacking).

Energy and Utilities

Energy and Utilities Firewall Firmware Advertising

Large-scale campaign targets configuration files from WordPress sites

Security Affairs

JUNE 4, 2020

“Between May 29 and May 31, 2020, the Wordfence Firewall blocked over 130 million attacks intended to harvest database credentials from 1.3 Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Advertising

Advertising Firewall Accountability Authentication

Flaws in leading industrial remote access systems allow disruption of operations

Security Affairs

OCTOBER 1, 2020

Security researchers from Israeli firm OTORIO found critical vulnerabilities in leading industrial remote access systems that could be exploited by attackers to ban access to industrial production floors, hack into company networks, tamper with data, and even steal sensitive business secrets. Pierluigi Paganini.

Advertising

Advertising Authentication VPN Firewall

Threat Trends: Firewall

Hackers exploit SQL injection zero-day issue in Sophos firewall

Trending Sources

Retail giant Home Depot agrees to a $17.5 million settlement over 2014 data breach

Sophos blocked attacks exploiting XG Firewall zero-day to deploy Ransomware

Cisco fixes 5 critical flaws that could allow router firewall takeover

Sophos fixed a critical vulnerability in Cyberoam firewalls

Palo Alto Networks fixes a critical flaw in firewall PAN-OS

Security Affairs newsletter Round 501 by Pierluigi Paganini – INTERNATIONAL EDITION

Actions Target Russian Govt. Botnet, Hydra Dark Market

HP Device Manager flaws expose Windows systems to hack

CISA adds Sophos firewall bug to Known Exploited Vulnerabilities Catalog

Unsigned Firmware running on peripherals could expose Windows, Linux systems to hack

335,923 out of 489,337 Fortinet firewalls vulnerable to CVE-2023-27997

Experts hacked 28,000 unsecured printers to raise awareness of printer security issues

Palo Alto Networks addresses tens of serious issues in PAN-OS

FBI is warning of cyber attacks against Windows 7 systems that reached end-of-life

French Firms Rocked by Kasbah Hacker?

5 Ways to Protect Yourself from IP Address Hacking

Hackers are actively exploiting critical RCE in WordPress sites using File Manager plugin

Some Zyxel devices can be hacked via DNS requests

Millions of Xiongmai video surveillance devices can be easily hacked via cloud feature

NASA hacked! An unauthorized Raspberry Pi connected to its network was the entry point

Palo Alto Networks addresses another high severity issue in PAN-OS devices

Ripple20 flaws in Treck TCP/IP stack potentially expose hundreds of millions of devices to hack

Almost 800,000 SonicWall VPN appliances online are vulnerable to CVE-2020-5135

ZoneAlarm forum site hack exposed data of thousands of users

CVE-2020-3452 flaw in Cisco ASA/FTD exploited within hours after the disclosure

Snake Ransomware isolates infected Systems before encrypting files

Flaws in Siemens SPPA-T3000 control system expose power plants to hack

New Ttint IoT botnet exploits two zero-days in Tenda routers

Expert found a hardcoded SSH Key in Fortinet SIEM appliances

Expert released DOS Exploit PoC for Critical Windows RDP Gateway flaws

KingComposer fixes a reflected XSS impacting 100,000 WordPress sites

Microsoft accidentally reveals Wormable Win SMBv3 CVE-2020-0796 Flaw

Palo Alto Networks fixes severe Code Execution and DoS flaws in PAN-OS

Juniper Networks addressed many issues in its products

Attackers are hacking NSC Linear eMerge E3 building access systems to launch DDoS attacks

Imperva data Breach: WAF customers’ data exposed

US CISA report shares details on web shells used by Iranian hackers

Hackers target Docker servers to deploy the new Kinsing cryptocurrency miner

Using Public Wi-Fi? Your data can be hacked easily! Here’s How…

DoS attack the caused disruption at US power utility exploited a known flaw

Large-scale campaign targets configuration files from WordPress sites

Flaws in leading industrial remote access systems allow disruption of operations

Stay Connected