Security News

SonicWall last week announced the availability of patches for a severe vulnerability in its Network Security Manager product. NSM is a firewall management application that provides the ability to monitor and manage all network security services from a single interface, as well as to automate tasks to improve security operations.

Cisco this week released patches for multiple vulnerabilities in Firepower Threat Defense software, including high-severity issues that could be exploited for arbitrary command execution or denial-of-service attacks. An attacker able to abuse it may execute arbitrary commands as root on the underlying OS. The flaw exists because user-supplied command arguments aren't sufficiently validated, and affects Firepower 4100 and Firepower 9300 series appliances.

Zyxel Networks announced the addition of the USG FLEX firewall series to its signature Nebula Cloud Networking solution. Equipped with the newly-released firmware version ZLD5.0, the USG FLEX firewalls add the robust, intelligent network security capability that establishes Nebula as the most comprehensive cloud networking solution for SMBs and MSPs. The distribution of the workforce, initially driven by COVID-19 restrictions, presents businesses with the challenge of providing critical connectivity to network resources and assets to remote employees outside of the main office.

If you've got an application which faces the web, no one would dispute that you should probably have a web application firewall sitting in front of it. Web apps, after all, are the leading cause of security breaches, and the web application firewall is first line of defence, preventing bad actors getting in in the first place, and then leaving with whatever goodies they've found.

Secure access service edge and network-as-a-service provider Perimeter 81, announced Tuesday a new Firewall-as-a-Service offering designed to enhance the company's SASE platform. Perimeter 81's Network Traffic Control offering is aimed at securing the network perimeter and builds upon the company's SASE offering, which includes its Zero Trust Network Access, Zero Trust Application Access, and DNS Filtering products.

New research by FireEye's Mandiant cyber forensics arm has now revealed a previously unknown persistence mechanism that shows the adversaries made use of BITS to launch the backdoor. Introduced in Windows XP, BITS is a component of Microsoft Windows, which makes use of idle network bandwidth to facilitate the asynchronous transfer of files between machines.

A web application firewall is your first line of defence when it comes to protecting your organization from an array of potential threats. By filtering out the content scrapers, bots, and other web creepy-crawlies, you can remove their impact on your infrastructure reduce the overall cost of maintaining your web presence.

In a bid to replace MPLS circuits and SD-WAN appliances, Cloudflare has introduced Magic WAN and Magic Firewall and partnerships with VMware, Aruba, Digital Realty, CoreSite and EdgeConneX. Cloudflare Monday introduced Magic WAN with Magic Firewall as well as new strategic partnerships with network hardware and data center providers as part of Cloudflare One, its cloud-based network-as-a-service offering released in October 2020. Magic WAN connects any source of data traffic-data centers, offices, devices, cloud apps, etc.

Cloudflare introduced Magic WAN with Magic Firewall and new strategic partnerships with major networking and data center providers as part of Cloudflare One, its cloud-based network-as-a-service solution. Magic WAN with Magic Firewall gives customers of all sizes a one-stop-shop to connect and secure data, devices, offices, cloud networks, and more without relying on hardware boxes.

Germany-based cybersecurity company Genua has fast-tracked a fix for a critical flaw in one of its firewall products. Affected by the critical flaws is the GenuGate High Resistance Firewall, which Genua touts as a two-tier firewall that includes an application-level gateway and a packet filter for blocking malicious data.