Salt Typhoon targets telcos again with backdoor GhostSpider malware
While GhostSpider took all the limelight, Salt Typhoon was also spotted using other, never-seen-before variants, including a ...
US government agencies told to patch these critical security flaws or face attack
The US Cybersecurity and Infrastructure Security Agency (CISA) has added a new critical vulnerability to its Known Exploited ...
SecurityWeek21 小时
New VPN Attack Demonstrated Against Palo Alto Networks, SonicWall Products
Palo Alto Networks and SonicWall VPNs affected by vulnerabilities allowing remote code execution and privilege escalation.
The Hacker News2 天
CISA Urges Agencies to Patch Critical "Array Networks" Flaw Amid Active Attacks
CISA flags Array Networks flaw CVE-2023-28461 for active exploitation; agencies urged to patch by December 16.
1,000s of Palo Alto Networks firewalls hijacked as miscreants exploit critical hole
Roughly 2,000 devices had been hijacked as of Wednesday - a day after Palo Alto Networks pushed a patch for the holes - ...
Fortinet VPN服务器设计缺陷能隐藏攻击者行踪
据BleepingComputer消息,网络安全厂商Fortinet产品中的VPN 服务器存在一个设计漏洞,其日志记录机制能够隐藏成功实施暴力攻击的行为记录,无法让防御者察觉到系统可能已被入侵。 返回搜狐,查看更多 ...
Fortinet VPN design flaw hides successful brute-force attacks
A design flaw in the Fortinet VPN server's logging mechanism can be leveraged to conceal the successful verification of credentials during a brute-force attack without tipping off defenders of ...
D-Link tells users to trash old VPN routers over bug too dangerous to identify
Owners of older models of D-Link VPN routers are being told to retire and replace their devices following the disclosure of a ...