Firewall and Internet - Cyber Security Informer

What Is a Firewall and Do you Need One?

Adam Levin

JULY 6, 2022

A firewall is a network security device or program designed to prevent unauthorized and malicious internet traffic from entering a private network or device. Firewalls filter incoming network traffic at a computer’s entry points, or ports, where information is exchanged between the computer network and external devices.

Firewall

Firewall Software Internet Internet

Attackers exploit recently disclosed Palo Alto Networks PAN-OS firewalls bug

Security Affairs

FEBRUARY 15, 2025

Threat actors are exploiting a recently disclosed vulnerability, tracked as CVE-2025-0108, inPalo Alto Networks PAN-OS firewalls. Researchers warn that threat actors are exploiting a recently disclosed vulnerability, tracked as CVE-2025-0108, in Palo Alto Networks PAN-OS firewalls. ” states GreyNoise. h4 >= 11.2.4-h4

Firewall

Firewall Authentication Architecture Risk

Zyxel 0day Affects its Firewall Products, Too

Krebs on Security

FEBRUARY 26, 2020

Today, Zyxel acknowledged the same flaw is present in many of its firewall products. “We’ve now completed the investigation of all Zyxel products and found that firewall products running specific firmware versions are also vulnerable,” Zyxel wrote in an email to KrebsOnSecurity. Patch 0 through ZLD V4.35

Firewall

Firewall Firmware VPN IoT

MyBook Users Urged to Unplug Devices from Internet

Krebs on Security

JUNE 25, 2021

Hard drive giant Western Digital is urging users of its MyBook Live brand of network storage drives to disconnect them from the Internet, warning that malicious hackers are remotely wiping the drives using a critical flaw that can be triggered by anyone who knows the Internet address of an affected device.

Internet

Internet Internet Backups Small Business

SonicWall warns of an exploitable SonicOS vulnerability

Security Affairs

JANUARY 8, 2025

SonicWall warns customers to address an authentication bypass vulnerability in its firewall’s SonicOS that is “susceptible to actual exploitation.” All customers are encouraged to upgrade their firewalls to the latest MR listed below.” hardware firewalls: SonicOS 6.5.5.1-6n NSv firewalls: SonicOS 6.5.4.v-21s-RC2457

Firewall

Firewall Firmware VPN Authentication

Palo Alto Networks confirmed active exploitation of recently disclosed zero-day

Security Affairs

NOVEMBER 16, 2024

Palo Alto Networks confirmed active exploitation of a zero-day in its PAN-OS firewall and released new indicators of compromise (IoCs). Last week, Palo Alto Networks warned customers to limit access to their next-gen firewall management interface due to a potential remote code execution vulnerability (CVSSv4.0 Base Score: 9.3)

Firewall

Firewall Internet Internet VPN

Palo Alto Networks warns of potential RCE in PAN-OS management interface

Security Affairs

NOVEMBER 8, 2024

Palo Alto Networks warns customers to restrict access to their next-generation firewalls because of a potential RCE flaw in the PAN-OS management interface. Palo Alto Networks warns customers to limit access to their next-gen firewall management interface due to a potential remote code execution vulnerability in PAN-OS.

Firewall

Firewall Authentication Internet Internet

Palo Alto Networks warns that CVE-2025-0111 flaw is actively exploited in attacks

Security Affairs

FEBRUARY 19, 2025

Palo Alto Networks warns that the vulnerability CVE-2025-0111 is actively exploited with two other flaws to compromise PAN-OS firewalls. Palo Alto Networks warns that threat actors are chaining the vulnerability CVE-2025-0111 with two other vulnerabilities, tracked as CVE-2025-0108 with CVE-2024-9474 , to compromise PAN-OS firewalls.

Firewall

Firewall Authentication Architecture Internet

Cisco Secure Firewall on AWS: Build resilience at scale with stateful firewall clustering

Cisco Security

NOVEMBER 9, 2022

Organizations may introduce multiple individual firewalls into their AWS infrastructure to produce this outcome. To solve these challenges, Cisco created stateful firewall clustering with Secure Firewall in AWS. Cisco Secure Firewall clustering overview. In the Secure Firewall Threat Defense 7.1

Firewall

Firewall Architecture Backups Internet

Threat actor leaked config files and VPN passwords for over Fortinet Fortigate devices

Security Affairs

JANUARY 15, 2025

. “The build date coded in the last number block also points to the same date range: None of the firewall firmwares examined had been compiled after September 14, 2022.” “As many as 80 different device types can be found in the data leak, with the FortiGate Firewall 40F and 60F being the most widespread.

VPN

VPN Passwords Firewall Firmware

Zero-Day Vulnerability Suspected in Attacks on Fortinet Firewalls with Exposed Interfaces

The Hacker News

JANUARY 14, 2025

Threat hunters are calling attention to a new campaign that has targeted Fortinet FortiGate firewall devices with management interfaces exposed on the public internet.

Firewall

Firewall VPN Accountability Authentication

Cisco Secure Firewall to Support Microsoft Azure Gateway Load Balancer

Cisco Security

NOVEMBER 2, 2021

Microsoft’s recent announcement of its upcoming Azure Gateway Load Balancer is great news for organizations requiring rapidly scalable firewalls with high availability in public cloud. Cisco has partnered with Microsoft and will be supporting Cisco Secure Firewall with Azure Gateway Load Balancer. No additional configuration needed.

Firewall

Firewall Architecture Internet Internet

Is your firewall stuck in the 80s?

Cisco Security

DECEMBER 13, 2022

Modernize your firewall for greater security resilience. Cybersecurity has changed dramatically since the dawn of firewalls in the 1980s. Today’s workers, data, and applications are everywhere, and firewalls must be as well. So, can your firewall grow with you? The firewall is a critical foundation for security.

Firewall

Firewall Retail Encryption Digital transformation

Best Internet Security Suites & Software for 2022

eSecurity Planet

FEBRUARY 4, 2022

Malware is one of the biggest threats businesses face, and with nearly a third of all malware coming through the internet and email, businesses and consumers alike need ways to protect themselves. This guide covers the major categories of internet security suites and includes a few of the top options for each. Antivirus Software.

Internet

Internet Internet Software Antivirus

Over 178,000 SonicWall next-generation firewalls (NGFW) online exposed to hack

Security Affairs

JANUARY 15, 2024

Researchers from Bishop Fox found over 178,000 SonicWall next-generation firewalls (NGFW) publicly exploitable. Researchers from Bishop Fox used BinaryEdge source data to find SonicWall firewalls with management interfaces exposed to the internet. ” reads the advisory published by Bishop Fox.

Firewall

Firewall Hacking Firmware Internet

Nearly 12,000 Juniper Firewalls Found Vulnerable to Recently Disclosed RCE Vulnerability

The Hacker News

SEPTEMBER 19, 2023

New research has found that close to 12,000 internet-exposed Juniper firewall devices are vulnerable to a recently disclosed remote code execution flaw.

Firewall

Firewall Internet Internet

Simplify Network Security with Cisco Secure Firewall-as-a-service (FWaaS) on AWS

Cisco Security

NOVEMBER 29, 2021

With traditional firewalls, network security teams are charged with the heavy lifting of deploying new solutions. According to Gartner, by 2025, 30% of new deployments of distributed branch-office firewalls will switch to firewall-as-a-service, up from less than 10% in 2021. Introduction. Starting with version 7.1

Firewall

Firewall Network Security Architecture VPN

12,000 Juniper SRX firewalls and EX switches vulnerable to CVE-2023-36845

Security Affairs

SEPTEMBER 19, 2023

Researchers discovered approximately 12,000 Juniper SRX firewalls and EX switches vulnerable to a recently disclosed CVE-2023-36845 RCE flaw. VulnCheck researchers discovered approximately 12,000 internet-exposed Juniper SRX firewalls and EX switches that are vulnerable to the recently disclosed remote code execution flaw CVE-2023-36845.

Firewall

Firewall Internet Internet Authentication

New DeadBolt Ransomware Targets NAT Devices

Schneier on Security

JANUARY 26, 2022

As with all ransomware attacks against QNAP devices, the DeadBolt attacks only affect devices accessible to the Internet. As the threat actors claim the attack is conducted through a zero-day vulnerability, it is strongly advised that all QNAP users disconnect their devices from the Internet and place them behind a firewall.

Ransomware

Ransomware Firewall Internet Encryption

SonicWall addressed an improper access control issue in its firewalls

Security Affairs

AUGUST 26, 2024

SonicWall addressed a critical flaw in its firewalls that could allow attackers to achieve unauthorized access to the devices. SonicWall has released security updates to address a critical vulnerability, tracked as CVE-2024-40766 (CVSS score: 9.3), in its firewalls. 13o Gen 6 Firewalls – 6.5.2.8-2n 5035 and older versions.”

Firewall

Firewall Firmware Malware Internet

Zxyel Flaw Powers New Mirai IoT Botnet Strain

Krebs on Security

MARCH 20, 2020

In February, hardware maker Zyxel fixed a zero-day vulnerability in its routers and VPN firewall products after KrebsOnSecurity told the company the flaw was being abused by attackers to break into devices. For those devices, Zyxel’s advice was not to leave them connected to the Internet. Zyxel issued a patch for the flaw on Feb.

IoT

IoT DDOS VPN Firewall

Scale security on the fly in Microsoft Azure Cloud with Cisco Secure Firewall

Cisco Security

SEPTEMBER 7, 2022

The release of Microsoft Azure Gateway Load Balancer is great news for customers, empowering them to simply and easily add Cisco Secure Firewall capabilities to their Azure cloud infrastructure. It also offers a single entry and exit point at the firewall and allows organizations to maintain visibility of the source IP address.

Firewall

Firewall Architecture Internet Internet

Protecting against Log4j with Secure Firewall & Secure IPS

Cisco Security

DECEMBER 13, 2021

The Apache Log4j vulnerability (CVE-2021-44228) has taken the Internet by storm in the past few days. This blog details quick ways Secure Firewall Threat Defense (FTD) and Secure IPS users can protect against attacks leveraging this vulnerability while patching their infrastructure.

Firewall

Firewall Encryption Internet Internet

What Is a Next-Generation Firewall?

eSecurity Planet

FEBRUARY 9, 2024

A next generation firewall (NGFW) performs deep packet inspection to check the contents of the data flowing through the firewall. Unlike more basic firewalls that only check the header of data packets, NGFWs examine and evaluate the payload data within the packet. Internet 2. Who Needs a Next-Gen Firewall?

Firewall

Firewall Encryption Malware Artificial Intelligence

New 0-Day Attacks Linked to China’s ‘Volt Typhoon’

Krebs on Security

AUGUST 27, 2024

Malicious hackers are exploiting a zero-day vulnerability in Versa Director , a software product used by many Internet and IT service providers. Researchers believe the activity is linked to Volt Typhoon , a Chinese cyber espionage group focused on infiltrating critical U.S. In a security advisory published Aug. victims and one non-U.S.

Internet

Internet Internet Technology Engineering

Zyxel fixed tens of flaws in Firewalls, Access Points, and NAS devices

Security Affairs

DECEMBER 3, 2023

Taiwanese vendor Zyxel addressed tens of vulnerabilities in its firewalls and access points. CVE-2023-35139 – A cross-site scripting (XSS) vulnerability in the CGI program of some firewall versions could allow an unauthenticated LAN-based attacker to store malicious scripts in a vulnerable device.

Firewall

Firewall Authentication VPN Cyber Attacks

Exposed HMIs: A Direct Pathway for Cyberattacks on Critical Infrastructure

SecureWorld News

DECEMBER 17, 2024

However, when improperly configured or left exposed to the internet, HMIs become prime targets for cyberattacks. According to Casey Ellis, Founder and Advisor at Bugcrowd, safety-critical control systems like HMIs "should never be on the Internet." Exposing HMI systems to the Internet can have serious consequences," Raju explains.

Internet

Internet Internet Risk Passwords

What Are Firewall Rules? Ultimate Guide & Best Practices

eSecurity Planet

JANUARY 24, 2024

Firewall rules are preconfigured, logical computing controls that give a firewall instructions for permitting and blocking network traffic. This includes protecting data from internet threats, but it also means restricting unauthorized traffic attempting to leave your enterprise network.

Firewall

Firewall Network Security Financial Services Internet

Sophos backports fix for CVE-2022-3236 for EOL firewall firmware versions due to ongoing attacks

Security Affairs

DECEMBER 13, 2023

Sophos backports the patch for CVE-2022-3236 for end-of-life (EOL) firewall firmware versions due to ongoing attacks exploiting the issue. In December 2022, Sophos released security patches to address seven vulnerabilities in Sophos Firewall version 19.5 , including some arbitrary code execution bugs. reads the advisory. “A

Firmware

Firmware Firewall Internet Internet

Cybersecurity Firm Imperva Discloses Breach

Krebs on Security

AUGUST 27, 2019

Imperva , a leading provider of Internet firewall services that help Web sites block malicious cyberattacks, alerted customers on Tuesday that a recent data breach exposed email addresses, scrambled passwords, API keys and SSL certificates for a subset of its firewall users. Redwood Shores, Calif.-based

Cybersecurity

Cybersecurity Firewall Passwords Data breaches

What Is a Host-Based Firewall? Definition & When to Use

eSecurity Planet

FEBRUARY 6, 2024

A host-based firewall is installed directly on individual networked devices to filter network traffic on a single device by inspecting both incoming and outgoing data. How Host-Based Firewalls Work Organizations often adopt host-based firewalls for device-specific security control.

Firewall

Firewall Mobile Network Security Software

5 Ways to Ensure Home Router Security with a Remote Workforce

Adam Levin

MARCH 19, 2020

Configure a Firewall: Most routers come with a built-in firewall to block unauthorized incoming internet traffic. Encourage workers to check the existing settings and enable their router’s firewall if it isn’t running already. Passwords should be difficult to guess, but easy enough for employees to remember.

Wireless

Wireless Firmware Firewall Manufacturing

Safer Internet Day, or why Brad Pitt needed an internet bodyguard

Malwarebytes

FEBRUARY 6, 2024

February 6, 2024 is Safer Internet Day. When I was asked to write about the topic, I misunderstood the question and heard: “can you cover save the internet” and we all agreed that it might be too late for that. The internet has been around for quite some time now, and most of us wouldn’t know what to do without it.

Internet

Internet Internet Media Artificial Intelligence

GUEST ESSAY: Best practices checklists each individual computer user still needs to follow

The Last Watchdog

MAY 9, 2022

Keep your firewall turned on. Software based firewalls are widely recommended for single computers, while hardware firewalls are typically provided with routers for networks. Some operating systems provide native software firewalls (such as Windows OS). Stelzhammer. Always perform the updates of your OS.

Backups

Backups Firewall Software Mobile

MY TAKE: Log4j’s big lesson – legacy tools, new tech are both needed to secure modern networks

The Last Watchdog

MARCH 29, 2022

In the early days of the Internet, coders created new programs for the sake of writing good code, then made it available for anyone to use and extend, license free. However, once the commercial Internet took hold, developers began leveraging open-source components far and wide in proprietary systems. Firewalls predate SIEMs.

Firewall

Firewall Internet Internet Digital transformation

US Disrupts Russian Botnet

Schneier on Security

APRIL 7, 2022

The operation copied and removed malware from vulnerable internet-connected firewall devices that Sandworm used for command and control (C2) of the underlying botnet. government has previously attributed to the Main Intelligence Directorate of the General Staff of the Armed Forces of the Russian Federation (the GRU).

Manufacturing

Manufacturing Firewall Malware Internet

Alert: Over 178,000 SonicWall Firewalls Potentially Vulnerable to Exploits - Act Now

The Hacker News

JANUARY 16, 2024

Over 178,000 SonicWall firewalls exposed over the internet are exploitable to at least one of the two security flaws that could be potentially exploited to cause a denial-of-service (DoS) condition and remote code execution (RCE).

Firewall

Firewall Internet Internet

What Is a Firewall Policy? Steps, Examples & Free Template

eSecurity Planet

JANUARY 5, 2024

A firewall policy is a set of rules and standards designed to control network traffic between an organization’s internal network and the internet. Featured Partners: Next-Gen Firewall (NGFW) Software Learn more Table of Contents Toggle Free Firewall Policy Template What Are the Components of Firewall Policies?

Firewall

Firewall Penetration Testing DNS Network Security

VulnRecap 1/16/24 – Major Firewall Issues Persist

eSecurity Planet

JANUARY 16, 2024

Keep an eye out for security announcements from your firewall vendors; it’s possible additional similar vulnerabilities will come to light. The problem: Juniper Networks released a bulletin about a remote code execution vulnerability in its SRX firewalls and EX switches. This vulnerability is tracked as CVE-2024-21591.

Firewall

Firewall Firmware IoT Authentication

Protect Your Home Office and Network With These 5 Tips

Adam Levin

MARCH 23, 2020

You can also create an extra firewall by configuring your router to block unwanted incoming internet traffic. Place Controls on Children’s Internet Activity: Keep your children off of your work computer and be sure to require administrator passwords that they can’t guess to install new software and apps. .

Manufacturing

Manufacturing Passwords Phishing Accountability

Alert: 330,000 FortiGate Firewalls Still Unpatched to CVE-2023-27997 RCE Flaw

The Hacker News

JULY 3, 2023

No less than 330000 FortiGate firewalls are still unpatched and vulnerable to CVE-2023-27997, a critical security flaw affecting Fortinet devices that have come under active exploitation in the wild.

Firewall

Firewall VPN Internet Internet

SHARED INTEL: Report details how cyber criminals leverage HTTPS TLS to hide malware

The Last Watchdog

APRIL 21, 2021

From January through March 2021, TLS concealed 45 percent of the malware Sophos analysts observed circulating on the Internet; that’s double the rate – 23 percent – seen in early 2020, Dan Schiappa, Sophos’ chief product officer, told me in a briefing. And on the back end, it allows them to cloak any data as it is getting exfiltrated.

Malware

Malware Firewall Encryption Digital transformation

Quantum Threats and How to Protect Your Data

SecureWorld News

DECEMBER 8, 2024

Attackers are intercepting and storing encrypted internet traffic in anticipation of future quantum decryptiona practice known as "store now, decrypt later." For example, Palo Alto Networks has integrated PQC into its VPNs and next-generation firewalls to protect data in transit against quantum threats.

Encryption

Encryption Firewall Education Firmware

BEST PRACTICES – 9 must-do security protocols companies must embrace to stem remote work risks

The Last Watchdog

MARCH 6, 2021

A VPN encrypts all internet traffic so that it is unreadable to anyone who intercepts it. This keeps your information away from prying eyes, such as internet service providers and hackers. Set up firewalls. Firewalls act as a defense line in preventing the possibility of threats entering your system. Secure home router.

VPN

VPN Passwords Firewall Risk

What Is a Firewall and Do you Need One?

Attackers exploit recently disclosed Palo Alto Networks PAN-OS firewalls bug

Trending Sources

Zyxel 0day Affects its Firewall Products, Too

MyBook Users Urged to Unplug Devices from Internet

SonicWall warns of an exploitable SonicOS vulnerability

Palo Alto Networks confirmed active exploitation of recently disclosed zero-day

Palo Alto Networks warns of potential RCE in PAN-OS management interface

Palo Alto Networks warns that CVE-2025-0111 flaw is actively exploited in attacks

Cisco Secure Firewall on AWS: Build resilience at scale with stateful firewall clustering

Threat actor leaked config files and VPN passwords for over Fortinet Fortigate devices

Zero-Day Vulnerability Suspected in Attacks on Fortinet Firewalls with Exposed Interfaces

Cisco Secure Firewall to Support Microsoft Azure Gateway Load Balancer

Is your firewall stuck in the 80s?

Best Internet Security Suites & Software for 2022

Over 178,000 SonicWall next-generation firewalls (NGFW) online exposed to hack

Nearly 12,000 Juniper Firewalls Found Vulnerable to Recently Disclosed RCE Vulnerability

Simplify Network Security with Cisco Secure Firewall-as-a-service (FWaaS) on AWS

12,000 Juniper SRX firewalls and EX switches vulnerable to CVE-2023-36845

New DeadBolt Ransomware Targets NAT Devices

SonicWall addressed an improper access control issue in its firewalls

Zxyel Flaw Powers New Mirai IoT Botnet Strain

Scale security on the fly in Microsoft Azure Cloud with Cisco Secure Firewall

Protecting against Log4j with Secure Firewall & Secure IPS

What Is a Next-Generation Firewall?

New 0-Day Attacks Linked to China’s ‘Volt Typhoon’

Zyxel fixed tens of flaws in Firewalls, Access Points, and NAS devices

Exposed HMIs: A Direct Pathway for Cyberattacks on Critical Infrastructure

What Are Firewall Rules? Ultimate Guide & Best Practices

Sophos backports fix for CVE-2022-3236 for EOL firewall firmware versions due to ongoing attacks

Cybersecurity Firm Imperva Discloses Breach

What Is a Host-Based Firewall? Definition & When to Use

5 Ways to Ensure Home Router Security with a Remote Workforce

Safer Internet Day, or why Brad Pitt needed an internet bodyguard

GUEST ESSAY: Best practices checklists each individual computer user still needs to follow

MY TAKE: Log4j’s big lesson – legacy tools, new tech are both needed to secure modern networks

US Disrupts Russian Botnet

Alert: Over 178,000 SonicWall Firewalls Potentially Vulnerable to Exploits - Act Now

What Is a Firewall Policy? Steps, Examples & Free Template

VulnRecap 1/16/24 – Major Firewall Issues Persist

Protect Your Home Office and Network With These 5 Tips

Alert: 330,000 FortiGate Firewalls Still Unpatched to CVE-2023-27997 RCE Flaw

SHARED INTEL: Report details how cyber criminals leverage HTTPS TLS to hide malware

Quantum Threats and How to Protect Your Data

BEST PRACTICES – 9 must-do security protocols companies must embrace to stem remote work risks

Stay Connected