Fortinet has fixed several critical flaws affecting its products. Ranging from Remote Code Execution (RCE) to SQL Injection, to Denial of Service (DoS), the vulnerabilities impact the FortiProxy SSL VPN and FortiWeb Web Application Firewall (WAF) products. Numerous advisories published by FortiGuard Labs this month and in January 2021 mention various serious flaws that the company has been Continue Reading
Networking device maker SonicWall has said that it is probing a security break of its internal network after noticing what it termed as a “coordinated attack.” The company in a short statement said that “highly sophisticated threat actors” targeted its internal systems by “exploiting probable zero-day flaws on certain SonicWall Continue Reading
This week, law enforcement agencies from the United States, Germany, France, Switzerland, and the Netherlands have captured the web domains and server infrastructure of three VPN services that offered a safe haven for hackers to attack their victims. The three services, active for over a decade, are reported to be Continue Reading
For an important new bug that was revealed on Wednesday, nearly 800,000 internet-accessible SonicWall VPN appliances will need to be updated and fixed. CVE-2020-5135, which was discovered by the Tripwire VERT security team, affects SonicOS, the operating system running on SonicWall Network Security Appliance (NSA) devices. They are used as Continue Reading
As per reports, cybercriminals have deployed ransomware on the systems of American hospitals and government organizations using Active Directory credentials. Although the flaw, traced as CVE-2019-11510, was fixed by Pulse Secure a year ago, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) cautioned companies in January 2020 to fix their Pulse Secure VPN servers Continue Reading
By