Tag: firewall
-
U.S. CISA adds CISCO Secure Firewall ASA and Secure FTD flaws to its Known Exploited Vulnerabilities catalog
U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds CISCO Secure Firewall ASA and Secure FTD flaws to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added CISCO Secure Firewall ASA and Secure FTD flaws to its Known Exploited Vulnerabilities (KEV) catalog. CISA urges Federal Agencies to identify and mitigate potential compromise…
-
Federal agencies given one day to patch exploited Cisco firewall bugs
Vulnerabilities in some models of Cisco’s Adaptive Security Appliances (ASA) have been exploited by “an advanced threat actor,” according to a warning from CISA. First seen on therecord.media Jump to article: therecord.media/cisco-asa-firewall-bugs-cisa-federal-agencies-warning
-
Urgent: Cisco ASA Zero-Day Duo Under Attack; CISA Triggers Emergency Mitigation Directive
Cisco is urging customers to patch two security flaws impacting the VPN web server of Cisco Secure Firewall Adaptive Security Appliance (ASA) Software and Cisco Secure Firewall Threat Defense (FTD) Software, which it said have been exploited in the wild.The zero-day vulnerabilities in question are listed below -CVE-2025-20333 (CVSS score: 9.9) – An improper validation…
-
Cloud Security Alliance launches framework to improve SaaS security
Tags: access, business, ceo, cloud, compliance, control, firewall, framework, governance, international, Internet, monitoring, network, privacy, risk, risk-assessment, saas, zero-trustChange control and configuration managementData security and privacy lifecycle managementIdentity and access managementInteroperability and portabilityLogging and monitoringSecurity incident management, e-discovery, and cloud forensicsThese domains are designed to map high-level business requirements into tangible SaaS security features that customers can actually configure and rely on, such as log delivery, SSO enforcement, secure configuration guidelines, and incident…
-
CISA orders agencies to patch Cisco flaws exploited in zero-day attacks
CISA has issued a new emergency directive ordering U.S. federal agencies to secure their Cisco firewall devices against two flaws that have been exploited in zero-day attacks. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/cisa-orders-agencies-to-patch-cisco-flaws-exploited-in-zero-day-attacks/
-
Cisco warns of ASA firewall zero-days exploited in attacks
Cisco warned customers today to patch two zero-day vulnerabilities that are actively being exploited in attacks and impact the company’s firewall software. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/cisco-warns-of-asa-firewall-zero-days-exploited-in-attacks/
-
SonicWall SMA 100 Firmware-Update um Rootkits zu entfernen
Die SonicWall SMA 100-Firewall-Produktreihe fällt zwar bald aus dem Support. Nachdem kürzlich die Backup-Dateien über MySonicWall Cloud Backup für einige Kunden offen gelegt wurden, scheint SonicWall zu reagieren. Es gibt ein Firmware-Update für die SonicWall SMA 100-Produktreihe, das Rootkit-Malware entfernen … First seen on borncity.com Jump to article: www.borncity.com/blog/2025/09/24/sonicwall-sma-100-firmware-update-um-rootkits-zu-entfernen/
-
SonicWall SMA 100 Firmware-Update um Rootkits zu entfernen
Die SonicWall SMA 100-Firewall-Produktreihe fällt zwar bald aus dem Support. Nachdem kürzlich die Backup-Dateien über MySonicWall Cloud Backup für einige Kunden offen gelegt wurden, scheint SonicWall zu reagieren. Es gibt ein Firmware-Update für die SonicWall SMA 100-Produktreihe, das Rootkit-Malware entfernen … First seen on borncity.com Jump to article: www.borncity.com/blog/2025/09/24/sonicwall-sma-100-firmware-update-um-rootkits-zu-entfernen/
-
Wait, Firewalls Still Matter in a Zero Trust World?
Zero Trust has become the rallying cry of modern cybersecurity. The principle of “never trust, always verify” is baked into government mandates, boardroom conversations, and vendor marketing slides everywhere. But… First seen on securityboulevard.com Jump to article: securityboulevard.com/2025/09/wait-firewalls-still-matter-in-a-zero-trust-world/
-
Details About Chinese Surveillance and Propaganda Companies
Tags: business, china, data-breach, firewall, government, infrastructure, startup, strategy, technologyDetails from leaked documents: While people often look at China’s Great Firewall as a single, all-powerful government system unique to China, the actual process of developing and maintaining it works the same way as surveillance technology in the West. Geedge collaborates with academic institutions on research and development, adapts its business strategy to fit different…
-
Firewall upgrade linked to three deaths after Australian telco cut off emergency calls
Optus was unaware network changes caused a problem, and ignored some customer complaints First seen on theregister.com Jump to article: www.theregister.com/2025/09/21/optus_emergency_call_incident/
-
Notruf-Ausfall in Australien: Mehrere Todesfälle nach Panne bei Firewall-Upgrade
Tags: firewallIn Australien sollen vier Menschen gestorben sein, nachdem der Notruf aufgrund einer Panne beim Telco-Provider Optus nicht erreichbar war. First seen on golem.de Jump to article: www.golem.de/news/notruf-nicht-erreichbar-mehrere-todesfaelle-nach-panne-bei-firewall-upgrade-2509-200326.html
-
Notruf nicht erreichbar: Mehrere Todesfälle nach Panne bei Firewall-Upgrade
Tags: firewallIn Australien sollen vier Menschen gestorben sein, nachdem der Notruf aufgrund einer Panne beim Telco-Provider Optus nicht erreichbar war. First seen on golem.de Jump to article: www.golem.de/news/notruf-nicht-erreichbar-mehrere-todesfaelle-nach-panne-bei-firewall-upgrade-2509-200326.html
-
The Silent Threat: How Misconfigurations Fuel the Cyber Crime Economy
Billions of records are breached each year as a result of misconfigured servers, firewalls and other network devices. What can be done? Let’s explore. First seen on securityboulevard.com Jump to article: securityboulevard.com/2025/09/the-silent-threat-how-misconfigurations-fuel-the-cyber-crime-economy/
-
Unkontrollierte Lieferantenzugänge: 5 Schritte zum Absichern der OT-Umgebung
OT-Security ist für viele Industrieunternehmen heute kein Fremdwort mehr. Sie schützen ihre Produktionsumgebungen mit Firewalls, segmentieren Netzwerken, überwachen Datenverkehr und setzen Intrusion-Detection-Systeme ein. Ein Einfallstor für Eindringlinge wird dabei nach Erfahrung von BxC Security, einem Cybersicherheitsunternehmen im Bereich der Operational Technology (OT) und Industrial Internet of Things (IIoT), jedoch häufig übersehen: unkontrollierte Lieferantenzugänge. Wenn Dienstleister……
-
Hackers Steal SonicWall Firewall Configurations
Hackers Accessed Backup Firewall Preference Files. Firewall maker SonicWall is telling customers to reset credentials after hackers stole firewall configuration backup files stored in its cloud service. Hackers launched brute force attacks against servers storing backup files. They stole configuration data of roughly 5% of the install base. First seen on govinfosecurity.com Jump to article:…
-
WatchGuard Patches Critical Firebox Firewall Flaw (CVE-2025-9242) With 9.3 CVSS Score
WatchGuard has issued security updates addressing a vulnerability, tracked as CVE-2025-9242, affecting its Firebox firewall devices. This flaw involves an out-of-bounds write weakness within the Fireware OS, potentially allowing remote attackers to execute arbitrary code on vulnerable devices configured with IKEv2 VPN. First seen on thecyberexpress.com Jump to article: thecyberexpress.com/cve-2025-9242-vulnerability/
-
WatchGuard Issues Fix for 9.3-Rated Firebox Firewall Vulnerability
WatchGuard has issued a critical security alert for its Firebox firewalls due to a serious vulnerability, CVE-2025-9242. Learn what this ‘out-of-bounds write’ flaw means, which Fireware OS versions are affected, and the urgent steps to take to protect your network from remote attacks. First seen on hackread.com Jump to article: hackread.com/watchguard-fix-for-firebox-firewall-vulnerability/
-
WatchGuard Issues Fix for 9.3-Rated Firebox Firewall Vulnerability
WatchGuard has issued a critical security alert for its Firebox firewalls due to a serious vulnerability, CVE-2025-9242. Learn what this ‘out-of-bounds write’ flaw means, which Fireware OS versions are affected, and the urgent steps to take to protect your network from remote attacks. First seen on hackread.com Jump to article: hackread.com/watchguard-fix-for-firebox-firewall-vulnerability/
-
WatchGuard Issues Fix for 9.3-Rated Firebox Firewall Vulnerability
WatchGuard has issued a critical security alert for its Firebox firewalls due to a serious vulnerability, CVE-2025-9242. Learn what this ‘out-of-bounds write’ flaw means, which Fireware OS versions are affected, and the urgent steps to take to protect your network from remote attacks. First seen on hackread.com Jump to article: hackread.com/watchguard-fix-for-firebox-firewall-vulnerability/
-
WatchGuard patches ‘critical’ VPN flaw in firewalls that could lead to compromise
Who is affected?: A list of the nearly three dozen firewall models affected by CVE-2025-9242 is available from WatchGuard’s website. The vulnerable versions of the Fireware OS are 2025.1, 12.x, 12.5.x (T15 & T35 models), 12.3.1 (FIPS-certified release), and 11.x (end of life). These are addressed (in the same order) by updating to versions 2025.1.1,…
-
SonicWall Breached, Firewall Backup Data Exposed
Threat actors breached the MySonicWall service and accessed backup firewall configuration files belonging to fewer than 5% of its install base, according to the company. First seen on darkreading.com Jump to article: www.darkreading.com/cyberattacks-data-breaches/sonicwall-breached-firewall-backup
-
Top 10 Best NGFW (Next”‘Generation Firewall) Providers in 2025
Protecting digital infrastructure is critical in 2025, as cyber threats escalate in complexity and diversity. Next”‘Generation Firewalls (NGFWs) have become the cornerstone for enterprise security, offering not just robust traffic filtering, but also deep packet inspection, advanced threat intelligence, and seamless cloud integration for defense against today’s persistent and evolving threats. Why Top 10 Best…
-
SonicWall warns customers to reset credentials after MySonicWall backups were exposed
SonicWall urges users to reset credentials after MySonicWall backups were exposed; the company locked out the threat actors and notified authorities. SonicWall urged customers to reset credentials after firewall backup files tied to MySonicWall accounts were exposed. The company announced it had blocked attackers’ access and is working with cybersecurity experts and law enforcement agencies…
-
SonicWall says attackers compromised some firewall configuration backup files
Between attackers exploiting 0-day and n-day vulnerabilities in the company’s firewalls and Secure Mobile Access appliances, SonicWall and its customers have had a tough … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2025/09/18/sonicwall-attackers-firewall-configuration-backup-files/
-
SonicWall Urges Password Resets After Cloud Backup Breach Affecting Under 5% of Customers
SonicWall is urging customers to reset credentials after their firewall configuration backup files were exposed in a security breach impacting MySonicWall accounts.The company said it recently detected suspicious activity targeting the cloud backup service for firewalls, and that unknown threat actors accessed backup firewall preference files stored in the cloud for less than 5% of…
-
Check Point gibt Integration von CloudguardSecurity in Nutanix-AOS 7.3 bekannt
Check Point Software Technologies verkündet die vollständige Integration von in Nutanix-AOS 7.3 inklusive Flow-Network-Security. Flow-Network-Security erweitert die Funktionen für Mikro-Segmentierung um Entitätsgruppen, vNIC-spezifische Richtlinien und globale Richtlinienbereiche. Diese Integration ermöglicht es Kunden, Cloudguard-Network-Security mithilfe der nativen Service-Insertion- und Firewall-Verkettungsfunktionen von Nutanix nahtlos zu implementieren vollständig integriert mit Flow-Virtual-Networking […] First seen on netzpalaver.de Jump to…
-
Brute force attacks hitting SonicWall firewall configuration backups
Tags: attack, authentication, backup, breach, cloud, computer, computing, credentials, data, defense, encryption, firewall, Hardware, login, mfa, password, phishing, software, technology, threatWhat are brute force attacks?: Brute force attacks use trial and error to crack passwords, login credentials, and encryption keys. They’ve been around since the beginning of the computer age, yet are still effective. Why? In part because people still use easily guessable passwords like ‘1234’, or their company’s name, or default passwords left on…
-
SonicWall Discloses Compromise of Cloud Backup Service
SonicWall said that threat actors accessed firewall preference files stored in the cloud for around 5% of its firewall install base First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/sonicwall-compromise-cloud-backup/
-
SonicWall Advises Users to Reset Logins After Config Backup Leak
SonicWall has alerted its customers to reset all login credentials after a recent leak exposed firewall configuration backups. The vendor emphasizes three critical stages”, containment, remediation, and monitoring”, to minimize risk and restore secure access. Users should follow each stage in order, beginning with containment to block further exposure, proceeding to remediation to reset passwords…