Security News

A significant number of SonicWall firewalls may be affected by a critical vulnerability that can be exploited for denial-of-service attacks and possibly arbitrary code execution. The vulnerability, identified as CVE-2020-5135, impacts various versions of SonicOS, the operating system powering SonicWall firewalls.

The new solution means that Managed Security Service Providers and Service Providers can offer a virtualized FWaaS that replaces customers' physical firewalls. With a pay-as-you-grow model, it also reduces the MSSP's network operations expense to deliver better ROI. "Current firewall architectures are complicated, do not scale and lock you in," said Eduardo Cervantes, CEO, Corsa Security.

Ericsson is advancing 5G core network security for communications service providers through the launch of the cloud native Ericsson Packet Core Firewall. Ericsson's new solution, part of the Ericsson 5G platform, is aimed at enabling CSPs to pursue those opportunities not only through the best packet core network security capabilities, but also in the most cost-effective way for their business.

Palo Alto Networks remediated vulnerabilities in PAN-OS. Attackers can use these vulnerabilities to gain access to sensitive data or develop the attack to gain access to the internal segments of the network of a company that uses vulnerable protection tools. Attackers can access a special firewall section, place malicious code in one of the web forms, and obtain maximum privileges in the OS. "We performed black-box testing of the NGFW management web interface to detect this vulnerability, which results from the lack of user input sanitization. During a real attack, hackers can, for example, bruteforce the password for the administrator panel, perform RCE, and gain access to the Palo Alto product, as well as the company's internal network," said Mikhail Klyuchnikov, researcher at Positive Technologies.

To ensure cybersecurity administration is easier and more accessible, SonicWall announced new zero touch-enabled, multi-gigabit SonicWall TZ firewalls with SD-Branch capabilities, along with a redesigned cloud-native management console that helps streamline operations through fresh and modern user interfaces. "SonicWall's new SD-Branch ready next-generation firewalls, along with re-engineered SonicOS, provide multi-gig malware inspection for increased security needs and advanced protection against threats hiding in the encrypted TLS 1.3 traffic."

China is now blocking encrypted HTTPS traffic that uses TLS 1.3 with ESNI enabled, according to observers at the Great Firewall Report. While TLS hides the content of a user's communication, it cannot always hide the server they are communicating with because its handshake optionally contains a Server Name Indication field designed to explain where traffic is going.

China is now blocking encrypted HTTPS traffic that uses TLS 1.3 with ESNI enabled, according to observers at the Great Firewall Report. While TLS hides the content of a user's communication, it cannot always hide the server they are communicating with because its handshake optionally contains a Server Name Indication field designed to explain where traffic is going.

A ban by President Donald Trump's administration on Chinese mobile apps such as TikTok and WeChat risks fragmenting an already fragile global internet and creating an American version of China's "Great Firewall." Fears about the global internet ecosystem intensified this week with Trump's executive orders banning the popular video app TikTok and Chinese social network WeChat, following a US government directive to prohibit the use of other "Untrusted" applications and services from China.

Fortinet announced the FortiGate 4400F, a hyperscale firewall, setting new milestones for Security Compute Ratings to deliver performance, scalability and security in a single appliance to meet escalating business needs. FortiGate 4400F is powered by Fortinet's latest seventh generation network processor to offer hardware-acceleration, making it the only network firewall that is fast enough to secure hyperscale data centers and 5G networks.

StrongBox IT released its flagship application firewall - Modshield SB, now available in the AWS Marketplace on a cloud subscription model and a Bring Your Own License model. A feature-rich, scalable and cost-effective application firewall, Modshield SB is designed to provide protection against all major attack vectors.