Firewalls, IPsec VPNs news, articles & updates| SC Media

Firewalls, IPsec VPNs

More attackers trying to sabotage incident response tactics

The security industry needs to become more clandestine in its approach to incident response, making it harder for attackers to know that they are being tracked. At least that’s what researchers concluded in the fifth installment of VMware Carbon Black’s semi-annual Global Incident Response Threat Report, which also focused heavily on the impact of COVID-19…

Lesson learned: Failure to patch led to password leak of 900 VPN enterprise servers

Applying a security update to a CVE released more than a year ago could have prevented a hacker from publishing plaintext usernames and passwords, as well as IP addresses, for more than 900 Pulse Secure VPN enterprise servers. “The lesson here? Patch, patch, patch,” said Laurence Pitt, global security strategy director at Juniper Networks. “The…

Critical VPN vulnerabilities pose danger to OT networks

The VPN approach for remote security may not be as secure as previously believed, new research has found. That’s particularly troubling, which is especially unfortunate given on the work-at-home reality brought on by COVID-19, according to a blog post from Claroty. Remote code execution (RCE) vulnerabilities affecting VPN implementations primarily used to provide remote access…

Cisco patches severe traversal vulnerability exploited in wild

Cisco is urging organizations to implement its patch for a high severity directory traversal vulnerability that affected the web services interface of the Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software firewall products and which is being actively exploited in the wild. The vulnerability, CVE-2020-3452, stems from the “lack of…

Laptop hosting patient data stolen from surgeon on vacation

20 VPS providers shut down, leave customers scrambling, crying foul

Two days after alerting customers in the wake of what some believed might have been a cyberattack, at least 20 web hosting providers have shut their doors and plan to wipe their servers. The providers, which include ArkaHosting, Bigfoot Servers, DCNHost, n3Servers, StrongHosting and MegaZone Hosting, are all are low-end server operations that appear to…

UTM: SonicWALL

SonicWALL has developed a new deep packet inspection technique that does not require the analysis engine to play an entire message stream before it can perform its analysis.

Next hm-product-review in Firewalls, IPsec VPNs