Tag: vpn
-
New TunnelVision Attack Allows Hijacking of VPN Traffic via DHCP Manipulation
Researchers have detailed a Virtual Private Network (VPN) bypass technique dubbed TunnelVision that allows threat actors to snoop on victim’s network … First seen on thehackernews.com Jump to article: thehackernews.com/2024/05/new-tunnelvision-attack-allows.html
-
Sonicwall SSL-VPN exploit Advertised on the Dark web
The dark web has seen the release of a new vulnerability that targets SonicWALL SSL-VPN devices. Recently, the exploit, which lets people enter privat… First seen on gbhackers.com Jump to article: gbhackers.com/sonicwall-ssl-vpn-exploit/
-
Norway recommends replacing SSL VPN to prevent breaches
The Norwegian National Cyber Security Centre (NCSC) recommends replacing SSLVPN/WebVPN solutions with alternatives due to the repeated exploitation of… First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/norway-recommends-replacing-ssl-vpn-to-prevent-breaches/
-
Cloud Monitor Identifies and Remediates Problematic VPN Use in K-12 Districts
Recently, we hosted Michael Tapia, Chief Technology Director at Clint ISD in Texas, and Kobe Brummet, Cybersecurity Technician at Hawkins School Distr… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/05/cloud-monitor-identifies-and-remediates-problematic-vpn-use-in-k-12-districts/
-
Nissan North America data breach impacts over 53,000 employees
Nissan North America (Nissan) suffered a data breach last year when a threat actor targeted the company’s external VPN and shut down systems to receiv… First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/nissan-north-america-data-breach-impacts-over-53-000-employees/
-
Is the VPN Era Ending? Insights for Security Leaders
The landscape of VPN technology is rapidly changing, signaling potential obsolescence as new threats specifically target these technologies. In recent… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/05/is-the-vpn-era-ending-insights-for-security-leaders/
-
Upgrade Your Cybersecurity With This VPN That’s Only $70 for Three Years
First seen on techrepublic.com Jump to article: www.techrepublic.com/article/windscribe-ultimate-vpn-protection/
-
Microsoft fixes VPN failures caused by April Windows updates
Today, ‹Microsoft fixed a known issue breaking VPN connections across client and server platforms after installing the April 2024 Windows security upd… First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/microsoft/microsoft-fixes-vpn-failures-caused-by-april-windows-updates/
-
Windows-Update verursacht Probleme bei VPNs und NTLM – April-Update kann bei Windows für Probleme mit Active Directory führen
First seen on security-insider.de Jump to article: www.security-insider.de/windows-10-11-windows-server-updates-probleme-vpn-ntlm-a-cb9c0447fd8069a5131712484da8aa4b/
-
FortiOS FortiProxy SSL-VPN Flaw Allows IP Spoofing via Malicious Packets
A critical vulnerability has been discovered in Fortinet’s FortiOS SSL-VPN and FortiProxy SSL-VPN. The flaw, identified as FG-IR-23-225, allows attack… First seen on gbhackers.com Jump to article: gbhackers.com/fortios-fortiproxy-ssl-vpn-flaw/
-
Akira ransomware extorted $42M from 250+ victims
The Akira ransomware gang, which utilizes sophisticated hybrid encryption techniques and multiple ransomware variants, targeted vulnerable Cisco VPNs … First seen on techtarget.com Jump to article: www.techtarget.com/searchsecurity/news/366581522/CISA-Akira-ransomware-extorted-42M-from-250-plus-victims
-
April-Updates sorgen für Probleme mit VPN und NTLM
Die VPN-Verbindungsprobleme betreffen Windows 10, 11 und gängige Server-Versionen. Bei Domänencontrollern kann außerdem ein hoher NTLM-Datenverkehr au… First seen on golem.de Jump to article: www.golem.de/news/windows-april-updates-sorgen-fuer-probleme-mit-vpn-und-ntlm-2405-184745.html
-
Surfshark VPN Brings Data Breach Awareness with See-Through Toilet Campaign
Surfshark pulls a unique stunt in London with a see-through toilet! This security campaign uses public discomfort to spark a conversation about online… First seen on hackread.com Jump to article: www.hackread.com/surfshark-vpn-data-breach-awareness-through-toilet/
-
Large-scale brute-force activity targeting VPNs, SSH services with commonly used login credentials
Cisco Talos would like to acknowledge Anna Bennett and Brandon White of Cisco Talos and Phillip Schafer, Mike Moran, and Becca Lynch of the Duo Se… First seen on blog.talosintelligence.com Jump to article: blog.talosintelligence.com/large-scale-brute-force-activity-targeting-vpns-ssh-services-with-commonly-used-login-credentials/
-
TunnelVision DHCP Flaw Lets Attackers Bypass VPNs, Redirect Traffic
First seen on packetstormsecurity.com Jump to article: packetstormsecurity.com/news/view/35854/TunnelVision-DHCP-Flaw-Lets-Attackers-Bypass-VPNs-Redirect-Traffic.html
-
Can VPNs Be Tracked by the Police?
VPNs are popular due to the fact they add security and privacy to what are otherwise daily open Wi-Fi and public internet channels. But can VPNs be tr… First seen on techrepublic.com Jump to article: www.techrepublic.com/article/can-vpns-be-tracked-by-police/
-
Sichere Netzwerke – So reisen Sie und Ihre Daten sicher
Nur wenige wissen, was ein so genanntes ‘Virtual Private Network ist, kurz ‘VPN. Dabei lohnt sich die Software fast für jeden, der unterwegs ist – so … First seen on welt.de Jump to article: www.welt.de/reise/article244861758/VPN-im-Urlaub-So-bleiben-Ihre-Daten-im-Internet-auf-Reisen-sicher.html
-
VPN-Leak: TunnelVision über Schwachstelle CVE-2024-3661
Sicherheitsforscher haben eine neue, als TunnelVision bezeichnete Angriffsmethode auf VPN-Verbindungen offen gelegt. Der Angriff ermöglicht es, einen … First seen on borncity.com Jump to article: www.borncity.com/blog/2024/05/07/vpn-leak-tunnelvision-ber-schwachstelle-cve-2024-3661/
-
New TunnelVision technique can bypass the VPN encapsulation
TunnelVision is a new VPN bypass technique that enables threat actors to spy on users’ traffic bypassing the VPN encapsulation. Leviathan Security res… First seen on securityaffairs.com Jump to article: securityaffairs.com/162894/hacking/tunnelvision-attack-vpn.html
-
‘TunnelVision’ DHCP flaw lets attackers bypass VPNs, redirect traffic
First seen on scmagazine.com Jump to article: www.scmagazine.com/news/tunnelvision-dhcp-flaw-lets-attackers-bypass-vpns-redirect-traffic
-
Tunnelvision: Angreifer können VPNs aushebeln und Daten umleiten
Tags: vpnMit einer 22 Jahre alten DHCP-Option können Angreifer bewirken, dass Datenverkehr am VPN vorbeiläuft. Weder Nutzer noch VPN-Betreiber bekommen das mit… First seen on heise.de Jump to article: www.heise.de/news/Tunnelvision-Angreifer-koennen-VPNs-aushebeln-und-Daten-umleiten-9710188.html
-
Attackers may be using TunnelVision to snoop on users’ VPN traffic (CVE-2024-3661)
Researchers have brought to light a new attack method dubbed TunnelVision and uniquely identified as CVE-2024-3661 that can be used to intercept and… First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/05/08/tunnelvision-cve-2024-3661/
-
VPN-Leak: TunnelVision über Schwachstelle CVE-2024-3661
Sicherheitsforscher haben eine neue, als TunnelVision bezeichnete Angriffsmethode auf VPN-Verbindungen offen gelegt. Der Angriff ermöglicht es, einen … First seen on borncity.com Jump to article: www.borncity.com/blog/2024/05/07/vpn-leak-tunnelvision-ber-schwachstelle-cve-2024-3661/
-
New ‘TunnelVision’ Technique Leaks Traffic From Any VPN System
A new VPN bypass technique allows threat actors to snoop on victims’ traffic by forcing it off the VPN tunnel using built-in features of DHCP. The pos… First seen on securityweek.com Jump to article: www.securityweek.com/new-tunnelvision-technique-leaks-traffic-from-any-vpn-system/
-
New attack leaks VPN traffic using rogue DHCP servers
A new attack dubbed TunnelVision can route traffic outside a VPN’s encryption tunnel, allowing attackers to snoop on unencrypted traffic while maintai… First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/new-tunnelvision-attack-leaks-vpn-traffic-using-rogue-dhcp-servers/
-
Attackers Leverage TunnelVision Vulnerability to Expose User Data
A new VPN vulnerability has emerged on the internet, compromising the very essence of online privacy and data protection. The TunnelVision vulnerabili… First seen on thecyberexpress.com Jump to article: thecyberexpress.com/decoding-the-tunnelvision-vulnerability/
-
Hackers Actively Exploiting Ivanti Pulse Secure Vulnerabilities
Juniper Threat Labs has reported active exploitation attempts targeting vulnerabilities in Ivanti Pulse Secure VPN appliances. These vulnerabilities, … First seen on gbhackers.com Jump to article: gbhackers.com/hackers-actively-exploiting/
-
New TunnelVision Attack Lets Attackers Snoop on VPN Traffic
In a groundbreaking discovery, cybersecurity experts at Leviathan Security Group have unveiled a new type of cyberattack dubbed >>TunnelVision,
-
New Attack on VPNs
This href=https://arstechnica.com/security/2024/05/novel-attack-against-virtually-all-vpn-apps-neuters-their-entire-purpose/>attack has been feasible … First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/05/new-attack-on-vpns/
-
Android bug leaks DNS queries even when VPN kill switch is enabled
A Mullvad VPN user has discovered that Android devices leak DNS queries when switching VPN servers even though the Always-on VPN feature was enabled w… First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/android-bug-leaks-dns-queries-even-when-vpn-kill-switch-is-enabled/