Security News

Zyxel and McAfee offer a one-box security solution designed for small- to medium-sized businesses
2020-04-28 00:00

Zyxel Networks, a leader in delivering secure, AI- and cloud-powered home and business solutions, announced it has partnered with McAfee, the device-to-cloud cybersecurity company, to offer customers an integrated, one-box security solution designed specifically for small- to medium-sized businesses. The integration of McAfee's anti-malware solution into Zyxel's high-end ATP firewall family will provide SMBs with best-of-breed malware detection, security performance, and advanced web filtering within a single firewall device.

Fast-Moving DDoS Botnet Exploits Unpatched ZyXel RCE Bug
2020-04-22 21:39

That's according to researchers at Radware, who also said that it's notable how quickly Hoaxcalls operators have moved to weaponize the ZyXel bug, which as of this time of writing, has still not been addressed in a ZyXel advisory. According to the Palo Alto Unit 42 researchers who found it, the original sample featured three DDoS attack vectors: UDP, DNS and HEX floods; and, it was seen infecting devices through two vulnerabilities: A DrayTek Vigor2960 remote code-execution vulnerability and a GrandStream Unified Communications remote SQL injection bug.

Zyxel NAS, firewalls and LILIN DVRs and IP cameras conscripted into IoT botnets
2020-03-23 11:56

A wide variety of Zyxel and LILIN IoT devices are being conscripted into several botnets, researchers have warned. Users are advised to implement the provided firmware updates to plug the security holes exploited by the botmasters or, if they can't, to stop using the devices altogether or to put them behind network firewalls.

Mukashi: A New Mirai IoT Botnet Variant Targeting Zyxel NAS Devices
2020-03-21 01:45

A new version of the infamous Mirai botnet is exploiting a recently uncovered critical vulnerability in network-attached storage devices in an attempt to remotely infect and control vulnerable machines. Called "Mukashi," the new variant of the malware employs brute-force attacks using different combinations of default credentials to log into Zyxel NAS, UTM, ATP, and VPN firewall products to take control of the devices and add them to a network of infected bots that can be used to carry out Distributed Denial of Service attacks.

Mukashi: A New Mirai IoT Botnet Variant Targeting Zyxel NAS Devices
2020-03-21 01:45

A new version of the infamous Mirai botnet is exploiting a recently uncovered critical vulnerability in network-attached storage devices in an attempt to remotely infect and control vulnerable machines. Called "Mukashi," the new variant of the malware employs brute-force attacks using different combinations of default credentials to log into Zyxel NAS, UTM, ATP, and VPN firewall products to take control of the devices and add them to a network of infected bots that can be used to carry out Distributed Denial of Service attacks.

New Mirai Variant Delivered to Zyxel NAS Devices Via Recently Patched Flaw
2020-03-20 19:47

A new variant of the notorious Mirai malware has been delivered by cybercriminals to network-attached storage devices made by Zyxel through the exploitation of a recently patched vulnerability. Zyxel informed customers last month that some of its NAS devices and firewalls are affected by a critical vulnerability - tracked as CVE-2020-9054 - that can be exploited by a remote, unauthenticated attacker to execute arbitrary code on affected devices.

Zyxel Flaw Powers New Mirai IoT Botnet Strain
2020-03-20 14:46

In February, hardware maker Zyxel fixed a zero-day vulnerability in its routers and VPN firewall products after KrebsOnSecurity told the company the flaw was being abused by attackers to break into devices. Security experts at Palo Alto Networks said Thursday their sensors detected the new Mirai variant - dubbed Mukashi - on Mar. 12.

New Mirai Variant ‘Mukashi’ Targets Zyxel NAS Devices
2020-03-20 13:27

Another variant of the shape-shifting Mirai botnet is attacking Zyxel network-attached storage devices using a critical vulnerability that was only recently discovered, according to security researchers. The variant, dubbed Mukashi, takes advantage of a pre-authentication command injection vulnerability found in Zyxel NAS storage devices, according to researchers at Palo Alto Networks' Unit 42 global threat intelligence team.

New Mirai Variant ‘Mukashi’ Targets Zyxel NAS Devices
2020-03-20 13:27

Another variant of the shape-shifting Mirai botnet is attacking Zyxel network-attached storage devices using a critical vulnerability that was only recently discovered, according to security researchers. The variant, dubbed Mukashi, takes advantage of a pre-authentication command injection vulnerability found in Zyxel NAS storage devices, according to researchers at Palo Alto Networks' Unit 42 global threat intelligence team.

Many Backdoors Found in Zyxel CloudCNM SecuManager Software
2020-03-16 10:20

Researchers have discovered 16 types of vulnerabilities, including many backdoors, in Zyxel's CloudCNM SecuManager network management software. Zyxel CloudCNM SecuManager provides a console that organizations can use to monitor and manage their security gateways, including on internal and global networks.