An attacker has been targeting unpatched AT&T network edge devices via a brand new botnet dubbed EwDoor.
The Federal Bureau of Investigation (FBI) has issued a report of advanced persistent threat (APT) actors exploiting 0-day FatPipe MPVPN networking devices since at least May of 2021.
Palo Alto Networks has fixed a Critical PAN-OS vulnerability (CVE-2021-3064) in GlobalProtect Portal and Gateway Interfaces.
Security researchers have released a new Proof of Concept (PoC) tool that demonstrates BrakTooth vulnerability exploits against Bluetooth-enabled devices.
Cisco has fixed a High risk Cisco IOS XE SD-WAN Software command injection vulnerability that could allow a hacker to execute code with root privileges. The tech giant also released security updates for Analog Telephone Adapter and Web Security Appliance vulnerabilities.
Juniper Networks has released security advisories to fix many vulnerabilities on Junos OS, PTX Series, QFX Series, SRX Series network devices and multiple other products.
The National Security Agency (NSA) and the Cybersecurity and Infrastructure Security Agency (CISA) have released a joint Cybersecurity Information Sheet selecting and securing remote access VPNs.
Cisco has fixed three Critical risk Cisco IOS XE Software vulnerabilities in multiple network products, as well as three High risk SD-WAN vEdge vulnerabilities.
Cisco has fixed five High risk Cisco IOS XR Software vulnerabilities in multiple network products, as well as a security update for OpenSSL vulnerabilities.
Researchers have discovered a Critical authentication bypass vulnerability and two other flaws in multiple models of some Smart Switches.