Security Affairs

AUGUST 26, 2024

SonicWall addressed a critical flaw in its firewalls that could allow attackers to achieve unauthorized access to the devices. SonicWall has released security updates to address a critical vulnerability, tracked as CVE-2024-40766 (CVSS score: 9.3), in its firewalls. 13o Gen 6 Firewalls – 6.5.2.8-2n 5035 and older versions.”

Firewall 123

Firewall Firmware Malware Internet 123

Security Affairs

DECEMBER 13, 2023

Sophos backports the patch for CVE-2022-3236 for end-of-life (EOL) firewall firmware versions due to ongoing attacks exploiting the issue. In December 2022, Sophos released security patches to address seven vulnerabilities in Sophos Firewall version 19.5 , including some arbitrary code execution bugs. reads the advisory.

Firmware 129

Firmware Firewall Internet Internet 129

Security Affairs

JUNE 1, 2023

Threat actors are actively exploiting a command injection flaw, tracked as CVE-2023-28771, in Zyxel firewalls to install malware. Threat actors are actively attempting to exploit a command injection vulnerability, tracked as CVE-2023-28771 , that impacts Zyxel firewalls. in its firewall devices. USG FLEX ZLD V4.60

Firewall 98

Firewall Firmware VPN DDOS 98

eSecurity Planet

JANUARY 16, 2024

Keep an eye out for security announcements from your firewall vendors; it’s possible additional similar vulnerabilities will come to light. The problem: Juniper Networks released a bulletin about a remote code execution vulnerability in its SRX firewalls and EX switches. The vulnerability can be tracked as CVE-2023-29357.

Firewall 111

Firewall Firmware IoT Authentication 111

The Last Watchdog

MAY 16, 2023

At RSA Conference 2023 , I had the chance to meet with Paul Nicholson , senior director of product marketing and analyst relations at A10 Networks. At RSAC 2023, A10 announced the addition of a next-generation web application firewall ( NGWAF ,) powered by Fastly, to its core Thunder ADC service.

Mobile 214

Mobile Cloud Migration Marketing Firewall 214

eSecurity Planet

AUGUST 29, 2023

Firewall-as-a-Service (FWaaS) offers firewall capabilities as a cloud-based service. Traditional firewalls protect the network perimeter, enforcing security standards by regulating incoming and outgoing traffic according to rules and traffic analysis.

Firewall 98

Firewall Architecture Data privacy Internet 98

Security Affairs

NOVEMBER 13, 2023

US CISA added four vulnerabilities (tracked as CVE-2023-36844, CVE-2023-36845, CVE-2023-36846, and CVE-2023-36847) in Juniper devices to its Known Exploited Vulnerabilities catalog. ” states the update published by the company on November 8 th 2023. Customers are urged to immediately upgrade.”

Firewall 135

Firewall Authentication Internet Internet 135

Krebs on Security

JUNE 15, 2023

government agency in charge of improving the nation’s cybersecurity posture is ordering all federal agencies to take new measures to restrict access to Internet-exposed networking equipment. ” In details published on June 12 , Fortinet confirmed that one of the vulnerabilities ( CVE-2023-27997 ) is being actively exploited.

Risk 264

Risk VPN Internet Internet 264

Security Affairs

SEPTEMBER 26, 2024

internet service providers (ISPs) as part of a cyber espionage campaign code-named Salt Typhoon. internet service providers in recent months as part of a cyber espionage campaign code-named Salt Typhoon. internet-service providers in recent months in pursuit of sensitive information, according to people familiar with the matter.”

Internet 127

Internet Internet DNS Telecommunications 127

SecureList

MARCH 12, 2024

Profile of participants and applications We collected the data from a sample of the application security assessment projects our team completed in 2021–2023. Set firewall filters to prevent access to unauthorized domains. SQL Injection Most high-risk vulnerabilities in 2021–2023 were associated with SQL Injection.

Passwords 140

Passwords Authentication Architecture Risk 140

Security Affairs

SEPTEMBER 6, 2024

. “An improper access control vulnerability has been identified in the SonicWall SonicOS management access and SSLVPN, potentially leading to unauthorized resource access and in specific conditions, causing the firewall to crash.” ” reads the SonicWall’s advisory. 5035 and older versions. ” reads the advisory.

Firewall 125

Firewall Passwords Internet Internet 125

eSecurity Planet

OCTOBER 11, 2023

Microsoft’s Patch Tuesday for October 2023 covers a total of 103 CVEs, including three zero-day vulnerabilities affecting WordPad, Skype and the HTTP/2 “ Rapid Reset ” DDoS vulnerability. CVE-2023-41763 , an elevation of privilege vulnerability in Skype for Business with a CVSS score of 5.3

DDOS 111

DDOS Engineering Authentication Social Engineering 111

SecureList

DECEMBER 9, 2024

was used by tens of millions of websites approximately 4% of all sites on the internet which highlights the severity of the incident, whose full impact is yet to be determined. In 2023, cyberattacks using trusted relationships had already become one of the top three most common vectors , with this trend gaining new momentum in 2024.

Internet 105

Internet Internet Risk Social Engineering 105

SecureList

SEPTEMBER 21, 2023

We conducted an analysis of the IoT threat landscape for 2023, as well as the products and services offered on the dark web related to hacking connected devices. In the first half of 2023, 97.91% of password brute-force attempts registered by our honeypots targeted Telnet, and only 2.09%, SSH.

IoT 133

IoT DDOS Passwords Malware 133

Security Boulevard

JUNE 9, 2023

On 31-May-2023, Progress Software disclosed a critical vulnerability CVE-2023-34362 in the MOVEit application. As of 7 June 2023, there were roughly 2,500 instances of MOVEit Transfer exposed to the public internet. It connects to the database and offers data exfil functionality based on a provided X-siLock-Step1 header.

Software 103

Software Internet Internet Malware 103

eSecurity Planet

SEPTEMBER 22, 2023

The Barracuda SecureEdge SASE product builds off the well established Barracuda security products (firewalls, gateways, email security, and more) that already protect so many global companies. When compared against other SASE competitors, Barracuda SecureEdge can be considered one of the best options to protect remote users.

Firewall 98

Firewall Marketing Firmware Technology 98

eSecurity Planet

SEPTEMBER 5, 2023

August 28, 2023 Ransomware Group Exploits Citrix NetScaler Vulnerability In July, Citrix released a patch for a critical remote code execution vulnerability ( CVE-2023-3519 ), which affected the company’s NetScaler ADC and NetScaler Gateway products and carried a severity rating of 9.8 out of 10 on the CVSS vulnerability scale.

VPN 105

VPN Authentication Ransomware Antivirus 105

Troy Hunt

FEBRUARY 19, 2023

Ergo, something about this request triggered the firewall and caused it to be challenged. Cloudflare Payload Logging 🐰 🐰 🐰 🐰 Sometimes, people on the internet lose their minds a bit over things they really shouldn't. Looks like it's time to go down the next rabbit hole. Did I change anything?

Firewall 350

Firewall Internet Internet Risk 350

Security Affairs

JANUARY 14, 2024

Forescout experts questioned the attribution of cyber attacks that targeted the energy sector in Denmark in 2023 to the Russia-linked Sandworm. Forescout experts shared findings from their analysis of the cyber attacks that targeted the energy sector in Denmark in 2023, attributing them to the Russia-linked Sandworm. through 5.35.

Firewall 134

Firewall Firmware Cyber Attacks VPN 134

eSecurity Planet

SEPTEMBER 26, 2023

Founded in Tel Aviv, Israel, Cato Networks started as a firewall-as-a-service (FWaaS) company and focuses on the convergence of security, networks, and the cloud. Who is Cato Networks?

Firewall 98

Firewall VPN Malware Internet 98

eSecurity Planet

SEPTEMBER 26, 2023

SD-WAN integration with the SASE controller for Meraki, Catalyst, and others Cisco Umbrella SIG unifies firewall, SWG, DNS-layer security, CASB, and threat intelligence functions into a single and well-tested cloud service. Cisco+ Secure Connect Platform Cisco+ Secure Connect strives to provide a turnkey SASE solution for a variety of needs.

Firewall 98

Firewall DNS Architecture Technology 98

The Last Watchdog

NOVEMBER 12, 2023

I recently discussed the current state of tech standards with DigiCert’s Mike Nelson , Global Vice President of Digital Trust and, Dean Coclin , Senior Director of Trust Services, at DigiCert Trust Summit 2023. Another is S/MIME , which stands for “secure/multipurpose internet mail extensions. identification.”

Manufacturing 276

Manufacturing Authentication Marketing Encryption 276

eSecurity Planet

SEPTEMBER 26, 2023

Physical appliances provide functionality for routing wide area networks (WANs), stateful firewalls, SD-WANs, NGFW, antivirus, intrusion prevention services (IPS), and unified threat management (UTM) capabilities for local networks.

Firewall 98

Firewall Software Internet Internet 98

SecureList

JULY 19, 2023

On March 14, 2023, Microsoft published a blogpost describing an Outlook Client Elevation of Privilege Vulnerability (CVSS: 9.8 While the threat actor infrastructure might request Net-NTLMv2 authentication, Windows will honor the defined internet security zones and will not send (leak) Net-NTLMv2 hashes.

Firmware 98

Firmware Internet Internet Government 98

CyberSecurity Insiders

MAY 24, 2023

When it comes to protecting their network, most start with the basic firewall. So, what type of internet connection is the most secure? Meet the contenders First off, it is important to understand the different types of internet connections. Copper : Copper cables are the original internet connections.

Internet 94

Internet Internet Wireless Cyber threats 94

Security Affairs

NOVEMBER 9, 2023

US CISA added the vulnerability CVE-2023-29552 in the Service Location Protocol (SLP) to its Known Exploited Vulnerabilities catalog. Cybersecurity and Infrastructure Security Agency (CISA) added the vulnerability CVE-2023-29552 (CVSS score: 7.5) CISA orders federal agencies to fix this flaw by November 29, 2023.

Internet 127

Internet Internet Firewall Hacking 127

Security Affairs

AUGUST 4, 2024

A China-linked APT, tracked as StormBamboo, compromised an internet service provider (ISP) to poison software update mechanisms with malware. In mid-2023, Volexity discovered multiple malware infections affecting macOS and Windows systems within victim organizations. The company linked the attacks to StormBamboo APT group.

Malware 143

Malware DNS Firewall Software 143

eSecurity Planet

AUGUST 14, 2023

August 12 , 2023 Ford Auto’s TI Wi-Fi Vulnerability The Internet of Things (IoT) continues to expand and become a threat to connected businesses. While the infotainment system is supposedly firewalled from steering, throttling, and braking, attached devices may not be fully secured against communication via Wi-Fi.

Software 98

Software Malware Internet Internet 98

The Last Watchdog

DECEMBER 8, 2020

Locking down web gateways and erecting a robust firewall were considered the be-all and end-all. Related: The shared burden of securing the Internet of Things. Company networks must support endless permutations of users and apps, both on-premises and in the Internet cloud. billion by 2023.

Firewall 213

Firewall Digital transformation Internet Internet 213

Krebs on Security

FEBRUARY 22, 2024

In October 2023, Danowski detailed how i-SOON became embroiled in a software development contract dispute when it was sued by a competing Chinese cybersecurity company called Chengdu 404. Mr. Haibo has not yet responded to a request for comment. In September 2021, the U.S. But that’s getting harder to do.”

Government 322

Government Hacking Cyber threats Mobile 322

Malwarebytes

MAY 15, 2023

This means that Federal Civilian Executive Branch (FCEB) agencies need to remediate these vulnerabilities by June 2, 2023. The Ruckus vulnerability is listed under CVE-2023-25717 , which indicates that Ruckus Wireless Access Point software contains a vulnerability in its web services component.

Wireless 98

Wireless Firewall Internet Internet 98

Security Affairs

NOVEMBER 14, 2023

The attackers exploited zero-day vulnerabilities in Zyxel firewalls used by many critical infrastructure operators in Denmark. On April 25, 2023, Zyxel disclosed a critical vulnerability (CVSS score 9.8), tracked as CVE-2023-28771 , in a number of their firewalls. through 4.73, VPN series firmware versions 4.60

Cyber Attacks 137

Cyber Attacks Firmware Firewall VPN 137

Security Affairs

MARCH 13, 2025

Notably, they target CVE-2024-1709 (ScreenConnect authentication bypass) and CVE-2023-48788 (Fortinet EMS SQL injection) to infiltrate systems. The researchers report that the ransomware rely on Ligolo for reverse tunneling and Cloudflared to expose systems securely without direct internet exposure.

Ransomware 68

Ransomware Encryption Cryptocurrency Insurance 68

eSecurity Planet

SEPTEMBER 25, 2023

Founded in 2004, Cloudflare initially wanted to determine the source of email spam and became dedicated to building a better, more secure internet. Customers on this tier will receive Logpush to security incident and event management (SIEM) tools or cloud storage and certificate-based mTLS Authentication for internet of things (IoT) devices.

DNS 98

DNS DDOS IoT Firewall 98

Security Affairs

JUNE 17, 2024

In late 2023, Sygnia researchers responded to an incident suffered by a large organization that they attributed to a China-linked threat actor tracked as ‘Velvet Ant.’ One method used was exploiting a legacy F5 BIG-IP appliance exposed to the internet, which served as an internal Command and Control (C&C).

Malware 136

Malware Internet Internet Firewall 136

Digital Shadows

MARCH 17, 2025

While it had dropped out of the top 15 by 2023, it remains on CISAs list of routinely exploited vulnerabilities, showcasing its enduring appeal to threat actors. FortiGate devices, developed by Fortinet, provide VPN, firewall, and intrusion prevention capabilities. Rated CVSS 9.8, 1 hxxps://www.first[.]org/epss/

VPN 133

VPN Authentication Ransomware Risk 133

Security Affairs

SEPTEMBER 8, 2023

The US agency has detected the presence of indicators of compromise (IOCs) at an Aeronautical Sector organization as early as January 2023. ” The US CISA also reported that multiple APT groups were observed exploiting CVE-2022-42475 to establish a presence on the organization’s firewall device. ” continues the alert.

VPN 139

VPN Firewall Accountability Cybersecurity 139