For smaller organisations updating network devices is often overlooked. CISA is warning of a flaw in Zyxel firewalls that is being actively exploited by hackers even though the vendor issued patches for the vulnerability over a month ago! CISA Adds One Known Exploited Vulnerability to Catalog | CISA Hackers exploit …
Do you use Zyxel equipment?
If your network uses Zyxel equipment then you need to check if it is on the list compromised equipment that needs patching. Zyxel warns of critical vulnerabilities in firewall and VPN devices (bleepingcomputer.com)
So selling redundant gear sounds like a good idea…
Selling redundant gear and wiping hard drives on computers has pretty much become standard over the last few years – whether the machines are going for resale, donation, upcycling or recycling. But what happens when it comes to cyber security critical network devices? These bits of kit can be eye-wateringly …
Continue reading “So selling redundant gear sounds like a good idea…”
Patches are not always available for critical flaws
I write a lot about patches being one of the most important steps in any cyber security plan – a quick search for “patches” on this site will show you how important they are. However you also need more in your cyber security plan than simply software patching as vendors …
Continue reading “Patches are not always available for critical flaws”
WiFi Frame leak research
Domien Schepers and Aanjhan Ranganathan of Northeastern University and Mathy Vanhoef of imec-DistriNet, KU Leuven, have published a paper demonstrating a flaw in the way WiFi access points handle power saving requests to and from devices. This could enable a threat actor to manipulate the WiFi frames passing between devices …
