EwDoor Botnet attacking AT&T network edge devices

Post published:December 1, 2021
Post category:Cybersecurity Attacks Network Security Vulnerabilities & Exploits

An attacker has been targeting unpatched AT&T network edge devices via a brand new botnet dubbed EwDoor.

FBI alert: APT actors exploit 0-Day FatPipe VPN vulnerabilities

Post published:November 21, 2021
Post category:Network Security Security Updates & Patches Vulnerabilities & Exploits Zero-days

The Federal Bureau of Investigation (FBI) has issued a report of advanced persistent threat (APT) actors exploiting 0-day FatPipe MPVPN networking devices since at least May of 2021.

Palo Alto Networks fixes Critical PAN-OS vulnerability (CVE-2021-3064)

Post published:November 13, 2021
Post category:Network Security Security Updates & Patches Vulnerabilities & Exploits

Palo Alto Networks has fixed a Critical PAN-OS vulnerability (CVE-2021-3064) in GlobalProtect Portal and Gateway Interfaces.

New Proof of Concept tool demos BrakTooth vulnerability exploits

Post published:November 8, 2021
Post category:Network Security Vulnerabilities & Exploits

Security researchers have released a new Proof of Concept (PoC) tool that demonstrates BrakTooth vulnerability exploits against Bluetooth-enabled devices.

Cisco SD-WAN command injection vulnerability could lead to code execution as root

Post published:October 23, 2021
Post category:Network Security Security Updates & Patches Vulnerabilities & Exploits

Cisco has fixed a High risk Cisco IOS XE SD-WAN Software command injection vulnerability that could allow a hacker to execute code with root privileges. The tech giant also released security updates for Analog Telephone Adapter and Web Security Appliance vulnerabilities.

Juniper patches multiple vulnerabilities in Junos OS and other products (October 2021)

Post published:October 15, 2021
Post category:Network Security Security Updates & Patches Vulnerabilities & Exploits

Juniper Networks has released security advisories to fix many vulnerabilities on Junos OS, PTX Series, QFX Series, SRX Series network devices and multiple other products.

NSA and CISA release guidance on securing remote access VPNs

Post published:September 29, 2021
Post category:Access Control Cybersecurity Articles Identity & Access Management Network Security

The National Security Agency (NSA) and the Cybersecurity and Infrastructure Security Agency (CISA) have released a joint Cybersecurity Information Sheet selecting and securing remote access VPNs.

Cisco patches Critical IOS XE and SD-WAN vulnerabilities

Post published:September 27, 2021
Post category:Network Security Security Updates & Patches Vulnerabilities & Exploits

Cisco has fixed three Critical risk Cisco IOS XE Software vulnerabilities in multiple network products, as well as three High risk SD-WAN vEdge vulnerabilities.

Cisco fixes 5 High risk Cisco IOS XR Software vulnerabilities in multiple products

Post published:September 10, 2021
Post category:Network Security Security Updates & Patches Vulnerabilities & Exploits

Cisco has fixed five High risk Cisco IOS XR Software vulnerabilities in multiple network products, as well as a security update for OpenSSL vulnerabilities.

Netgear patches Critical authentication bypass vulnerability and two other flaws in multiple models of some Smart Switches

Post published:September 7, 2021
Post category:Network Security Security Updates & Patches Vulnerabilities & Exploits

Researchers have discovered a Critical authentication bypass vulnerability and two other flaws in multiple models of some Smart Switches.