Salt Typhoon targets telcos again with backdoor GhostSpider malware
While GhostSpider took all the limelight, Salt Typhoon was also spotted using other, never-seen-before variants, including a ...
US government agencies told to patch these critical security flaws or face attack
The US Cybersecurity and Infrastructure Security Agency (CISA) has added a new critical vulnerability to its Known Exploited ...
SecurityWeek20h
New VPN Attack Demonstrated Against Palo Alto Networks, SonicWall Products
Palo Alto Networks and SonicWall VPNs affected by vulnerabilities allowing remote code execution and privilege escalation.
The Hacker News2d
CISA Urges Agencies to Patch Critical "Array Networks" Flaw Amid Active Attacks
CISA flags Array Networks flaw CVE-2023-28461 for active exploitation; agencies urged to patch by December 16.
1,000s of Palo Alto Networks firewalls hijacked as miscreants exploit critical hole
Roughly 2,000 devices had been hijacked as of Wednesday - a day after Palo Alto Networks pushed a patch for the holes - ...
Fortinet VPN design flaw hides successful brute-force attacks
A design flaw in the Fortinet VPN server's logging mechanism can be leveraged to conceal the successful verification of credentials during a brute-force attack without tipping off defenders of ...
D-Link tells users to trash old VPN routers over bug too dangerous to identify
Owners of older models of D-Link VPN routers are being told to retire and replace their devices following the disclosure of a ...