Tag: zyxel
-
A new ransomware regime is now targeting critical systems with weaker networks
by
in SecurityNews
Tags: access, attack, authentication, breach, control, corporate, credentials, cybercrime, data, defense, exploit, extortion, finance, flaw, fortinet, group, infrastructure, law, lockbit, malware, mfa, network, ransomware, risk, tactics, usa, vmware, vpn, vulnerability, zyxelThe year 2024’s ransomware shake-up, fueled by law enforcement crackdowns on giants like LockBit, has shifted focus to critical operations, with major attacks this year hitting targets like Halliburton, TfL, and Arkansas water plant.A Dragos study for the third quarter of 2024 highlighted a surge in activity from new groups like RansomHub, Play, and Fog,…
-
CISA Warns of Zyxel Firewalls, CyberPanel, North Grid, ProjectSend Flaws Exploited in Wild
by
in SecurityNews
Tags: cisa, cve, cyber, cybersecurity, exploit, firewall, flaw, Hardware, infrastructure, mitigation, software, vulnerability, zyxelThe Cybersecurity and Infrastructure Security Agency (CISA) has issued warnings about several vulnerabilities being actively exploited in the wild. The vulnerabilities affect popular software and hardware products, including Zyxel firewalls, CyberPanel, North Grid, and ProjectSend. Organizations using these products are urged to apply mitigations immediately or discontinue usage if fixes are unavailable. CVE-2024-51378: CyberPanel Incorrect…
-
CISA Warns of Active Exploitation of Flaws in Zyxel, ProjectSend, and CyberPanel
by
in SecurityNewsThe U.S. Cybersecurity and Infrastructure Security Agency (CISA) added multiple security flaws affecting products from Zyxel, North Grid Proself, ProjectSend, and CyberPanel to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation in the wild.The list of vulnerabilities is as follows -CVE-2024-51378 (CVSS score: 10.0) – An incorrect default permissions First seen on…
-
CISA, German cyber authorities warn Zyxel firewalls facing active exploitation
by
in SecurityNewsAttackers have targeted dozens of companies with Helldown ransomware, researchers found. First seen on cybersecuritydive.com Jump to article: www.cybersecuritydive.com/news/cisa-german-zyxel-firewalls-exploitation/734581/
-
CISA Warns of Zyxel Firewall Vulnerability Exploited in Attacks
by
in SecurityNewsA second vulnerability in Zyxel firewalls has been exploited in Helldown ransomware attacks over the past weeks. The post CISA Warns of Zyxel Firewall Vulnerability Exploited in Attacks appeared first on SecurityWeek. First seen on securityweek.com Jump to article: www.securityweek.com/cisa-warns-of-zyxel-firewall-vulnerability-exploited-in-attacks/
-
U.S. CISA adds ProjectSend, North Grid Proself, and Zyxel firewalls bugs to its Known Exploited Vulnerabilities catalog
by
in SecurityNewsU.S. Cybersecurity and Infrastructure Security Agency (CISA) adds ProjectSend, North Grid Proself, and Zyxel firewalls bugs to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added the following vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog: Proself versions before Ver5.62, Ver1.65, and Ver1.08 are vulnerable to XXE attacks, allowing unauthenticated attackers…
-
Mirai-artiges Botnetz greift Zyxel-NAS-Geräte an
by
in SecurityNewsÄltere Network-Attached-Storage-Geräte (NAS) von Zyxel werden aktuell von einem Botnetz angegriffen, das dem berüchtigten Mirai ähnelt. Zweck der Atta… First seen on 8com.de Jump to article: www.8com.de/cyber-security-blog/mirai-artiges-botnetz-greift-zyxel-nas-gerate-an
-
Zyxel Firewalls Targeted by Helldown Ransomware: CVE-2024-11667 Exploited
by
in SecurityNewsZyxel Firewalls have become a key target in recent cyberattacks, with attackers exploiting a critical vulnerability to deploy the dangerous Helldown ransomware. The German CERT (CERT-Bund) has issued a warning alongside Zyxel detailing the extent of these attacks and outlining immediate steps that organizations must take to protect their network devices. First seen on thecyberexpress.com…
-
Zyxel Firewall Vulnerability Actively Exploited in Attacks
by
in SecurityNewsZyxel has announced awareness of active exploitation attempts by threat actors targeting their firewall products. This follows a detailed report by cybersecurity firm Sekoia highlighting vulnerabilities previously disclosed in Zyxel’s systems. The company has responded swiftly to these potential threats, aiming to safeguard its users through vital firmware updates and security enhancements. CVE-2024-11667: The Vulnerability…
-
Helldown Zyxel-Firewalls mit möglicher Zero-Day-Schwachstelle
by
in SecurityNewsFirst seen on security-insider.de Jump to article: www.security-insider.de/neue-ransomware-helldown-analyse-zyxel-firewalls-a-700f77fe9bb21c4be52f7a6e26981a7e/
-
Helldown-Ransomware: Einbruch durch Sicherheitslücke in Zyxel-Firewalls
by
in SecurityNewsIT-Forscher beobachten, dass die Helldown-Ransomware nach Einbruch in Netze durch Sicherheitslücken in Zyxel-Firewalls zuschlägt. First seen on heise.de Jump to article: www.heise.de/news/Helldown-Ransomware-Einbruch-durch-Sicherheitsluecke-in-Zyxel-Firewalls-10176669.html
-
Zyxel firewalls targeted in recent ransomware attacks
by
in SecurityNewsZyxel warns that a ransomware group has been observed exploiting a recently patched command injection issue in its firewalls. Zyxel warns that a ransomware gang has been observed exploiting a recently patched command injection vulnerability, tracked as CVE-2024-42057, in its firewalls for initial compromise. Remote, unauthenticated attackers could exploit the flaw to execute OS commands…
-
Recent Zyxel Firewall Vulnerability Exploited in Ransomware Attacks
by
in SecurityNewsA ransomware group has been observed exploiting a recently patched command injection vulnerability in Zyxel firewalls for initial access. The post Recent Zyxel Firewall Vulnerability Exploited in Ransomware Attacks appeared first on SecurityWeek. First seen on securityweek.com Jump to article: www.securityweek.com/recent-zyxel-firewall-vulnerability-exploited-in-ransomware-attacks/
-
Helldown Ransomware Group Tied to Zyxel’s Firewall Exploits
by
in SecurityNewsFirewall Vendor Warns Attackers Using Valid Credentials They Previously Stole. Attackers wielding an emerging strain of ransomware called Helldown have been gaining a foothold in victims’ networks by exploiting a previously unknown flaw in their Zyxel firewalls, security researchers warn. Zyxel has warned attackers may be using valid credentials they previously stole. First seen on…
-
Helldown ransomware exploits Zyxel VPN flaw to breach networks
by
in SecurityNewsThe new ‘Helldown’ ransomware operation is believed to target vulnerabilities in Zyxel firewalls to breach corporate networks, allowing them to steal data and encrypt devices. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/helldown-ransomware-exploits-zyxel-vpn-flaw-to-breach-networks/
-
Helldown Ransomware Expands to Target VMware and Linux Systems
by
in SecurityNewsHelldown ransomware has expanded its reach to target Linux and VMware systems, exploiting Zyxel firewall vulnerabilities and exfiltrating data First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/helldown-ransomware-target-vmware/
-
Ransomware-Befall über Zyxel-Geräte: Neuer Fall und Erkenntnisse
by
in SecurityNewsNachdem Anfang September 2024 kritische Schwachstellen in Zyxel-Produkten gefixt wurden, und Zyxel (Belgien) Opfer der Helldown-Ransomware wurde, deut… First seen on borncity.com Jump to article: www.borncity.com/blog/2024/10/10/ransomware-befall-ueber-zyxel-geraete-neuer-fall-und-erkenntnisse/
-
Zyxel (Belgien) gehackt Ransomware-Vorkommnisse bei euch?
by
in SecurityNewsGibt es ein Sicherheitsproblem beim Anbieter Zyxel? Anfang September 2024 wurden kritische Schwachstellen in Produkten gefixt. Nun ist bekannt geworde… First seen on borncity.com Jump to article: www.borncity.com/blog/2024/10/01/zyxel-belgien-gehackt-ransomware-vorkommnisse-bei-euch/
-
Zyxel warns of vulnerabilities in a wide range of its products
by
in SecurityNewsFirst seen on arstechnica.com Jump to article: arstechnica.com/
-
Quad7 botnet evolves to more stealthy tactics to evade detection
The Quad7 botnet evolves and targets new SOHO devices, including Axentra media servers, Ruckus wireless routers and Zyxel VPN appliances. The Sekoia … First seen on securityaffairs.com Jump to article: securityaffairs.com/168250/malware/quad7-botnet-evolves.html
-
Zyxel Patches Critical OS Command Injection Flaw in Access Points and Routers
Zyxel has released software updates to address a critical security flaw impacting certain access point (AP) and security router versions that could re… First seen on thehackernews.com Jump to article: thehackernews.com/2024/09/zyxel-patches-critical-os-command.html
-
Zyxel fixes critical command injection flaw in EOL NAS devices (CVE-2024-6342)
Users of Zyxel network-attached storage (NAS) devices are urged to implement hotfixes addressing a critical and easily exploited command injection vul… First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/09/10/cve-2024-6342/
-
Mehrere hochriskante Sicherheitslücken in Firewalls
by
in SecurityNewsFirst seen on heise.de Jump to article: www.heise.de/news/Zyxel-Mehrere-hochriskante-Sicherheitsluecken-in-Firewalls-9855938.html
-
Quad7 botnet targets more SOHO and VPN routers, media servers
by
in SecurityNewsThe Quad7 botnet is expanding its targeting scope with the addition of new clusters and custom implants that now also target Zyxel VPN appliances and … First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/quad7-botnet-targets-more-soho-and-vpn-routers-media-servers/
-
Zyxel Patches Critical Vulns In Networking Devices
by
in SecurityNews
Tags: zyxelFirst seen on packetstormsecurity.com Jump to article: packetstormsecurity.com/news/view/36294/Zyxel-Patches-Critical-Vulns-In-Networking-Devices.html
-
Zyxel Security Advisory September 2024 Schwachstellen in Routern
by
in SecurityNewsDer Anbieter Zyxel hat Sicherheitsupdates zum Schließen einer kritischen Schwachstelle in mehreren seiner Business-Router veröffentlicht. Diese mit ei… First seen on borncity.com Jump to article: www.borncity.com/blog/2024/09/05/zyxel-security-advisory-september-2024-schwachstellen-in-routern/
-
Several Zyxel router, firewall vulnerabilities addressed
by
in SecurityNewsFirst seen on scmagazine.com Jump to article: www.scmagazine.com/brief/several-zyxel-router-firewall-vulnerabilities-addressed
-
Zyxel fixed critical OS command injection flaw in multiple routers
Taiwanese manufacturer Zyxel addressed a critical OS command injection flaw affecting multiple models of its business routers. Zyxel has released secu… First seen on securityaffairs.com Jump to article: securityaffairs.com/168020/security/zyxel-os-command-injection-flaw-cve-2024-7261.html
-
Zyxel Patches Critical Vulnerabilities in Networking Devices
by
in SecurityNewsZyxel has released patches for multiple vulnerabilities in its networking devices, including a critical flaw impacting access points and security rout… First seen on securityweek.com Jump to article: www.securityweek.com/zyxel-patches-critical-vulnerabilities-in-networking-devices/
-
Zyxel warns of critical OS command injection flaw in routers
by
in SecurityNewsZyxel has released security updates to address a critical vulnerability impacting multiple models of its business routers, potentially allowing unauth… First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/zyxel-warns-of-critical-os-command-injection-flaw-in-routers/