Authentication, Blog and Firewall - Cyber Security Informer

Zyxel addresses four flaws affecting APs, AP controllers, and firewalls

Security Affairs

MAY 26, 2022

Zyxel addressed multiple vulnerabilities impacting many of its products, including APs, AP controllers, and firewalls. Zyxel has released security updates to address multiple vulnerabilities affecting multiple products, including firewall, AP, and AP controller products. To nominate, please visit:?. Pierluigi Paganini.

Firewall

Firewall VPN Authentication Cyber Attacks

Chinese DriftingCloud APT exploited Sophos Firewall Zero-Day before it was fixed

Security Affairs

JUNE 17, 2022

China-linked threat actors exploited the zero-day flaw CVE-2022-1040 in Sophos Firewall weeks before it was fixed by the security vendor. On March 25, Sophos announced to have fixed the authentication bypass vulnerability, tracked as CVE-2022-1040, that resides in the User Portal and Webadmin areas of Sophos Firewall.

Firewall

Firewall DNS Authentication Malware

Building Scalable Security with Cisco Secure Firewall Cloud Native Version 1.1

Cisco Security

NOVEMBER 2, 2021

This is where Cisco Secure Firewall Cloud Native comes in, giving you the flexibility to provision, run, and scale containerized security services. Secure Firewall Cloud Native brings together the benefits of Kubernetes and Cisco’s industry-leading security technologies, providing a resilient architecture for infrastructure security at scale.

Firewall

Firewall DNS Architecture Authentication

Zyxel fixed a critical RCE flaw in its firewall devices and urges customers to install the patches

Security Affairs

APRIL 28, 2023

A vulnerability impacting Zyxel firewalls, tracked as CVE-2023-28771, can be exploited to execute arbitary code on vulnerable devices. Researchers from TRAPA Security have discovered a critical remote code execution vulnerability, tracked as CVE-2023-28771 (CVSS score 9.8), impacting Zyxel Firewall. through 5.35. through 5.35.

Firewall

Firewall Firmware VPN Authentication

Zyxel firewall and VPN devices affected by critical flaws

Security Affairs

MAY 25, 2023

Zyxel fixed two critical flaws in multiple firewall and VPN products that can lead to remote code execution or cause a DoS condition. Zyxel addressed two critical buffer overflow vulnerabilities, tracked as CVE-2023-33009 and CVE-2023-33010 , that affect several of its firewall and VPN products. critical severity score of 9.8)

Firewall

Firewall VPN Authentication Hacking

Passwordless Authentication, This is the Way

Duo's Security Blog

MARCH 15, 2021

From having to deal with patching, firewalls, network zone segmentation of accumulated security debt. The Progression to Passwordless Authentication Let’s look at the natural progression of life. The next step is the move into multi-factor authentication (MFA ). Therein lies the rub. But, what about the future? This is the way.

Authentication

Authentication Passwords Password Management Firewall

How To Integrate or Query My Public STIX STIX2 TAXII Threat Actor Specific Threat Intelligence Feed In Your Firewall or Security Solution – An Analysis

Security Boulevard

FEBRUARY 20, 2022

Dear blog readers, Did you already pull my public and free STIX STIX2 TAXII threat intelligence feed using your and your organization's Lifetime API Key ? Bearer Token Authentication Required: [link]. Here's your Lifetime API Key for you and your organization - f8aa0cca-a0ac-4eff-9c03-1c86ad7aee93. Portal: [link]. API: [link].

Firewall

Firewall Authentication

Revolutionizing Cisco VPN Access with Duo SSO

Duo's Security Blog

JANUARY 11, 2024

Secure Cisco VPN logins in less than an hour Authenticate users in seconds Verify user + device posture Blog unmanaged devices Mitigate modern security threats with phishing-resistant authentication Join the thousands of Cisco firewall customers who take advantage of protecting Cisco VPN logins with Cisco Duo Single Sign-On via SAML 2.0

VPN

VPN Authentication Firewall Risk

Vulnerability Recap 10/28/24 – Phishing, DoS, RCE & a Zero-Day

eSecurity Planet

OCTOBER 28, 2024

The attacker must be authenticated and have Site Owner permissions to conduct the attack, but with those, they could inject and execute arbitrary code in SharePoint Server contexts. The problem: The same day Cisco published the advisory for CVE-2024-20481, it also notified about a critical flaw in the Cisco Secure Firewall Management Center.

Phishing

Phishing Authentication VPN Software

What We Can Learn from the Capital One Hack

Krebs on Security

AUGUST 2, 2019

According to a source with direct knowledge of the breach investigation, the problem stemmed in part from a misconfigured open-source Web Application Firewall (WAF) that Capital One was using as part of its operations hosted in the cloud with Amazon Web Services (AWS).

Hacking

Hacking Firewall Data breaches Software

Researchers Quietly Cracked Zeppelin Ransomware Keys

Krebs on Security

NOVEMBER 17, 2022

In a blog post published today to coincide with a Black Hat Dubai talk on their discoveries, James and co-author Joel Lathrop said they were motivated to crack Zeppelin after the ransomware gang started attacking nonprofit and charity organizations.

Ransomware

Ransomware Encryption Backups Manufacturing

GUEST ESSAY: A primer on NIST 207A — guidance for adding ZTNA to cloud-native platforms

The Last Watchdog

MAY 24, 2023

Encryption in transit provides eavesdropping protection and payload authenticity. More importantly, it provides message authenticity: a bad actor cannot change the data or instructions being sent. Authentication use cases When two applications are communicating, we want to know what those applications are.

Authentication

Authentication Banking Architecture Encryption

How Zero Trust architecture improves the organization’s network security

CyberSecurity Insiders

JUNE 16, 2021

This blog was written by an independent guest blogger. Nobody, including clients inside the firewall, should be trusted, per Zero Trust. Organizations mandate users to be authentic and validated with the appropriate privacy configuration before accessing apps and information. Zero Trust is a security paradigm.

Architecture

Architecture Network Security Firewall Data breaches

CVE-2025-32433: Erlang/OTP SSH Unauthenticated Remote Code Execution Vulnerability

Security Boulevard

APRIL 18, 2025

This blog post was published on April 18 and reflects VPR at that time. At the time this blog was published, no known exploitation has been observed, however with the ease of exploitation and critical severity, we anticipate attacks will occur soon. This vulnerability received the maximum CVSSv3 score of 10.0 and below OTP-27.3.3

Authentication

Authentication Firewall

GUEST ESSAY: A primer on content management systems (CMS) — and how to secure them

The Last Watchdog

MAY 19, 2022

Wikipedia uses a CMS for textual entries, blog posts, images, photographs, videos, charts, graphics, and “ talk pages ” that help its many contributors collaborate. Nearly all CMS platforms, whether traditional or headless, offer some level of built-in security to authenticate users who are allowed to view, add, remove, or change content.

Data breaches

Data breaches Encryption Mobile Technology

GUEST ESSAY: NewsCorp hack shows cyber espionage, squelching of press freedom on the rise

The Last Watchdog

APRIL 5, 2022

China has enclosed its national internet servers within what is colloquially called ‘the Great Firewall.’ ’ This firewall even goes as far as to block the latest versions of the encryption service TLS (v1.3) These are the foremost reasons China is ranked fourth worst globally regarding press freedoms.

Hacking

Hacking Passwords Internet Internet

4 Most Common Network Attacks and How to Thwart Them

SecureWorld News

FEBRUARY 10, 2025

Defending against DDoS attacks has long depended on traditional measures like firewalls and rate limiting. The attackers place themselves between the user and the legitimate website, intercepting session data and bypassing multi-factor authentication (MFA) by relaying the authentication process in real time.

DDOS

DDOS Ransomware Authentication Phishing

Duo SSO, DAG, GCC, GCC High – What's the Difference?

Duo's Security Blog

DECEMBER 2, 2024

Duo Security offers a suite of solutions designed to provide secure authentication and single sign-on (SSO) for applications. It allows users to log into applications once and gain access to a variety of cloud and on-premises apps (as long as they support SAML or OIDC protocols) with seamless multi-factor authentication (MFA).

Government

Government Firewall Authentication Cybersecurity

CVE-2022-40684 flaw in Fortinet products is being exploited in the wild

Security Affairs

OCTOBER 10, 2022

Fortinet has confirmed that the recently disclosed critical authentication bypass issue (CVE-2022-40684) is being exploited in the wild. Last week, Fortinet addressed a critical authentication bypass flaw, tracked as CVE-2022-40684 , that impacted FortiGate firewalls and FortiProxy web proxies.

Authentication

Authentication Firewall Hacking Risk

GUEST ESSAY: Making the case for leveraging automation to eradicate cybersecurity burnout

The Last Watchdog

MAY 2, 2023

Experts must monitor firewalls, test business continuity plans and identify vulnerabilities with seemingly little payoff. Enforce strict authentication and verification measures for server access requests. An increasingly digitized world means analysts can’t rest. These feelings are a side effect of cybersecurity burnout.

Cybersecurity

Cybersecurity Firewall Risk Cyber Risk

GUEST ESSAY: Essential cyber hygiene practices all charities must embrace to protect their donors

The Last Watchdog

MARCH 4, 2024

Investing in top-notch firewalls is also essential, as they serve as the first line of defense against external threats. Strengthen authentication. Next, implement multi-factor authentication to make gaining access even more difficult for hackers. Train staff regularly. A robust security plan is only as good as its weakest link.

Social Engineering

Social Engineering Risk Cybersecurity Authentication

GUEST ESSAY: As cyber risks rise in 2020, as they surely will, don’t overlook physical security

The Last Watchdog

DECEMBER 31, 2019

All the encryption , firewalls , cryptography, SCADA systems , and other IT security measures would be useless if that were to occur. Some of the countermeasures that can be considered are CCTV, alarms, firewalls, exterior lighting, fences, and locks. One such measure is to authenticate the users who can access the server.

Cyber Risk

Cyber Risk Risk Firewall Surveillance

Duo Desktop: Packed with Features to Ease MFA and Boost Security

Duo's Security Blog

APRIL 18, 2025

For this reason, we have evolved the application from merely providing health checks to incorporating a myriad of features that ease the burden of MFA, enhance security, and offer an additional method of authentication. Duo keeps your users secure without getting in their way with relentless authentication prompts.

Authentication

Authentication Energy and Utilities Phishing Mobile

GUEST ESSAY: The case for leveraging hardware to shore up security — via a co-processor

The Last Watchdog

MARCH 31, 2022

Seeing the flaws continue year after year, the industry began linking authentication of valid software components to the underlying hardware, or the “root of trust”. This approach allows for compromised software to be identified during the authentication process.

Artificial Intelligence

Artificial Intelligence Threat Detection Engineering Software

CVE-2024-55591: Fortinet Authentication Bypass Zero-Day Vulnerability Exploited in the Wild

Security Boulevard

JANUARY 14, 2025

Fortinet patched a zero day authentication bypass vulnerability in FortiOS and FortiProxy that has been actively exploited in the wild as a zero-day since November 2024. CVE Description CVSSv3 CVE-2024-55591 FortiOS and FortiProxy Authentication Bypass Vulnerability 9.6 websocket module.

Authentication

Authentication VPN Firewall

GUEST ESSAY: Testing principles to mitigate real-world risks to ‘SASE’ and ‘Zero Trust’ systems

The Last Watchdog

FEBRUARY 27, 2023

Each of these elements must be validated across multiple security controls, like next-generation firewall (NGFW) and data loss protection (DLP) tools. Once again, there is no standard set of ZT test cases to guide this validation. Security controls that impede important business activities, will motivate users to try to bypass them.

Risk

Risk Architecture Firewall Telecommunications

Secure Your Remote Workspace: Discover the Best Firewalls for Seamless and Safe Connectivity

Responsible Cyber

JULY 14, 2024

Protecting sensitive information and maintaining seamless connectivity across distributed environments necessitates robust cybersecurity measures, with firewalls playing a crucial role. A firewall for remote work serves as a formidable barrier against these threats, monitoring incoming and outgoing traffic to block malicious activities.

Firewall

Firewall VPN Authentication Cyber threats

The Case for Multi-Vendor Security Integrations

Cisco Security

AUGUST 26, 2022

This new integration supports Umbrella proxy, cloud firewall, IP, and DNS logs. This integration expands on Elastic’s on-going expansion of Cisco integrations including ASA, Nexus, Meraki, Duo and Secure Firewall Threat Defense. New Cisco Firepower Next-Gen Firewall Integrations. Read more here. Read more here.

Firewall

Firewall Authentication Passwords Threat Detection

Static SSH host key in Cisco Umbrella allows stealing admin credentials

Security Affairs

APRIL 21, 2022

Umbrella integrates secure web gateway, firewall, DNS-layer security, and cloud access security broker (CASB) functionality to protect systems against threats. The CVE-2022-20773 flaw resides in the key-based SSH authentication mechanism of Cisco Umbrella Virtual Appliance and is due to the presence of a static SSH host key.

DNS

DNS Internet Internet Firewall

IoT Unravelled Part 3: Security

Troy Hunt

NOVEMBER 25, 2020

When Patching Goes Wrong Now that I've finished talking about how patching should be autonomous, let's talk about the problems with that starting with an issue I raised in this tweet from yesterday: In the first of my IoT blog series yesterday, I lamented how one of my smart plugs was unexplainably inaccessible. So, what's the right approach?

IoT

IoT Firmware Risk Manufacturing

Four Security Updates to Get Ahead of Proposed 2025 HIPAA Amendments

Duo's Security Blog

MARCH 31, 2025

87 The implementation of multi-factor authentication (MFA) is no longer optional. With the widest range of supported authenticators, Duo helps organizations transition away from weaker SMS and phone-call 2FA and towards push-based smartphone apps with verified number matching and phishing-resistant or passwordless authenticators.

Healthcare

Healthcare Authentication Risk Encryption

Fortinet Warns of New Authentication Bypass Vulnerability

Security Boulevard

NOVEMBER 7, 2022

Fortinet recently discovered an authentication bypass flaw in its FortiOS, FortiProxy, and FortiSwitchManager appliances. The post Fortinet Warns of New Authentication Bypass Vulnerability appeared first on Kratikal Blogs. The post Fortinet Warns of New Authentication Bypass Vulnerability appeared first on Security Boulevard.

Authentication

Authentication Risk Firewall Cyber threats

5 API Vulnerabilities That Get Exploited by Criminals

Security Affairs

NOVEMBER 22, 2022

APIs have unique threat implications that aren’t fully solved by web application firewalls or identity and access management solutions. Broken Object Level Authentication (BOLA). APIs with broken object level authentication allow attackers to easily exploit API endpoints by manipulating the ID of an object sent within an API request.

Authentication

Authentication Accountability B2B Digital transformation

Threat Spotlight: Inside the World’s Fastest Rising Ransomware Operator — BlackLock

Digital Shadows

FEBRUARY 17, 2025

Your Action Plan In addition to foundational security measuressuch as enabling multifactor authentication (MFA) and disabling Remote Desktop Protocol (RDP) on unnecessary systemsdefending against BlackLock requires strategic focus on its targeted infrastructure.

Ransomware

Ransomware Malware Risk Accountability

Grip Security Blog 2023-04-25 13:13:02

Security Boulevard

APRIL 25, 2023

Yet identities sprawl, duplicate and make connections far more than traditional perimeter safeguards like firewalls. Imagine distributing thousands of firewalls and leaving them open to consume and be consumed by third-party applications with nothing but a sign-up form to make the arrangement. Does that seem safe? Continuity.

Architecture

Architecture Firewall Authentication Technology

QNAP users are recommended to disable UPnP port forwarding on routers

Security Affairs

APRIL 19, 2022

UPnP is an insecure protocol, it uses network UDP multicasts, and doesn’t support encryption and authentication. “It is recommended that your QNAP NAS stay behind your router and firewall without a public IP address. ” reads the advisory published by QNAP. Do not let your QNAP NAS obtain a public IP address.

Internet

Internet Internet VPN Firewall

Application Programming Interface (API) testing for PCI DSS compliance

CyberSecurity Insiders

APRIL 26, 2023

This is the fourth blog in the series focused on PCI DSS, written by an AT&T Cybersecurity consultant. See the first blog relating to IAM and PCI DSS here. See the second blog on PCI DSS reporting details to ensure when contracting quarterly CDE tests here.

Firewall

Firewall Accountability Cybersecurity Authentication

High-Severity flaw in 3 WordPress plugins impacts 84,000 websites

Security Affairs

JANUARY 17, 2022

the default role of users who register at the blog) to administrator, so that they can register on the vulnerable site as an administrator and completely take it over. We develop and release a firewall rule to protect Wordfence users. December 5, 2021 – The firewall rule becomes available to free Wordfence users.

Firewall

Firewall Hacking Authentication Information Security

The Upcoming UK Telecoms Security Act Part Two: Changing Mindset from Stick to Carrot

Cisco Security

DECEMBER 13, 2022

In our last blog , we gave a rundown of what the Telecommunications (Security) Act (TSA) is, why it’s been introduced, who it affects, when it starts, and how firms can prepare. ny of the themes introduced in the code of practice can be aligned with the themes in a zero trust security model, which are also a focus for CISOs.

Telecommunications

Telecommunications Authentication Risk Cyber Risk

Cybersecurity First: #BeCyberSmart at Work and Home

Security Through Education

OCTOBER 27, 2021

Build a Human Firewall. Securing your work environment requires you to create what is referred to among security professionals as a human firewall. A human firewall is made up of the defenses the target presents to the attacker during a request for information. Use company-approved/vetted devices and applications.

Cybersecurity

Cybersecurity Social Engineering Firewall Engineering

Nexx bugs allow to open garage doors, and take control of alarms and plugs

Security Affairs

APRIL 5, 2023

Improper Authentication Validation CWE-287 ( CVE-2023–1752 , CVSS3.0: To mitigate the risk of the exploitation of the above flaws, it is recommended to disable internet connectivity for vulnerable Nexx devices or protect them with a firewall. Authorization Bypass Through User-Controlled Key CWE-639 ( CVE-2023–1749 , CVSS3.0:

Manufacturing

Manufacturing Media Firewall Internet

Announcing General Availability of Server Message Block Protocol Support for Duo Network Gateway

Duo's Security Blog

JANUARY 11, 2023

Then it verifies user identity with advanced multi-factor authentication (MFA). Untrusted remote users need a secure way to navigate the internet and corporate firewalls to establish trust and gain access. No more firewall, no more AAA or whatsoever complicated thing. Why do I need DNG? How does DNG for SMB work?

VPN

VPN Firewall Authentication Internet

Microsoft Targets Critical Outlook Zero-Day Flaw

eSecurity Planet

MARCH 16, 2023

. “An attacker who successfully exploited this vulnerability could access a user’s Net-NTLMv2 hash which could be used as a basis of an NTLM Relay attack against another service to authenticate as the user,” the company wrote. This will prevent the sending of NTLM authentication messages to remote file shares.

Energy and Utilities

Energy and Utilities Authentication Firewall Ransomware

Active Directory Authentication and Asset Sync

NopSec

APRIL 6, 2015

Enterprise organizations need vulnerability risk management solutions that integrate with the existing authentication and asset management infrastructure. Unified VRM was already compatible with MS Active Directory authentication. On top of authentication, Unified VRM has an additional integration with MS Active Directory.

Authentication

Authentication Firewall Risk

Zyxel addresses four flaws affecting APs, AP controllers, and firewalls

Chinese DriftingCloud APT exploited Sophos Firewall Zero-Day before it was fixed

Trending Sources

Building Scalable Security with Cisco Secure Firewall Cloud Native Version 1.1

Zyxel fixed a critical RCE flaw in its firewall devices and urges customers to install the patches

Zyxel firewall and VPN devices affected by critical flaws

Passwordless Authentication, This is the Way

How To Integrate or Query My Public STIX STIX2 TAXII Threat Actor Specific Threat Intelligence Feed In Your Firewall or Security Solution – An Analysis

Revolutionizing Cisco VPN Access with Duo SSO

Vulnerability Recap 10/28/24 – Phishing, DoS, RCE & a Zero-Day

What We Can Learn from the Capital One Hack

Researchers Quietly Cracked Zeppelin Ransomware Keys

GUEST ESSAY: A primer on NIST 207A — guidance for adding ZTNA to cloud-native platforms

How Zero Trust architecture improves the organization’s network security

CVE-2025-32433: Erlang/OTP SSH Unauthenticated Remote Code Execution Vulnerability

GUEST ESSAY: A primer on content management systems (CMS) — and how to secure them

GUEST ESSAY: NewsCorp hack shows cyber espionage, squelching of press freedom on the rise

4 Most Common Network Attacks and How to Thwart Them

Duo SSO, DAG, GCC, GCC High – What's the Difference?

CVE-2022-40684 flaw in Fortinet products is being exploited in the wild

GUEST ESSAY: Making the case for leveraging automation to eradicate cybersecurity burnout

GUEST ESSAY: Essential cyber hygiene practices all charities must embrace to protect their donors

GUEST ESSAY: As cyber risks rise in 2020, as they surely will, don’t overlook physical security

Duo Desktop: Packed with Features to Ease MFA and Boost Security

GUEST ESSAY: The case for leveraging hardware to shore up security — via a co-processor

CVE-2024-55591: Fortinet Authentication Bypass Zero-Day Vulnerability Exploited in the Wild

GUEST ESSAY: Testing principles to mitigate real-world risks to ‘SASE’ and ‘Zero Trust’ systems

Secure Your Remote Workspace: Discover the Best Firewalls for Seamless and Safe Connectivity

The Case for Multi-Vendor Security Integrations

Static SSH host key in Cisco Umbrella allows stealing admin credentials

IoT Unravelled Part 3: Security

Four Security Updates to Get Ahead of Proposed 2025 HIPAA Amendments

Fortinet Warns of New Authentication Bypass Vulnerability

5 API Vulnerabilities That Get Exploited by Criminals

Threat Spotlight: Inside the World’s Fastest Rising Ransomware Operator — BlackLock

Grip Security Blog 2023-04-25 13:13:02

QNAP users are recommended to disable UPnP port forwarding on routers

Application Programming Interface (API) testing for PCI DSS compliance

High-Severity flaw in 3 WordPress plugins impacts 84,000 websites

The Upcoming UK Telecoms Security Act Part Two: Changing Mindset from Stick to Carrot

Cybersecurity First: #BeCyberSmart at Work and Home

Nexx bugs allow to open garage doors, and take control of alarms and plugs

Announcing General Availability of Server Message Block Protocol Support for Duo Network Gateway

Microsoft Targets Critical Outlook Zero-Day Flaw

Active Directory Authentication and Asset Sync

Stay Connected