Security News

Flaws Riddle Zyxel’s Network Management Software
2020-03-11 21:20

Security researchers are warning that networking hardware vendor Zyxel and its Cloud CNM SecuManager software is chock-full of unpatched vulnerabilities that kick open the doors for hackers to exploit. The Zyxel CNM SecuManager is a networking management software solution that provides an integrated console to monitor and manage enterprise security gateways, such as the company's own ZyWALL USG and its VPN series products.

Over 20 Zyxel Firewalls Impacted by Recent Zero-Day Vulnerability
2020-02-27 04:49

A recently disclosed zero-day vulnerability in Zyxel network-attached storage devices also impacts over twenty of the vendor's firewalls. Earlier this week, Zyxel published an advisory on the vulnerability, revealing that it impacted over a dozen NAS devices, including ten that were no longer supported.

Zyxel storage, firewall, VPN, security boxes have a give-anyone-on-the-internet-root hole: Patch right now
2020-02-26 21:40

Zyxel's network storage boxes, business VPN gateways, firewalls, and, er, security scanners can be remotely hijacked by any miscreant, due to a devastating security hole in the firmware. If a miscreant can't directly connect to a vulnerable Zyxel device, "There are ways to trigger such crafted requests even if an attacker does not have direct connectivity to a vulnerable device," noted Carnegie Mellon's CERT Coordination Center in its advisory on the matter.

Zyxel storage, firewall, VPN, security boxes have a give-anyone-on-the-internet-root hole: Patch right now
2020-02-26 21:40

Zyxel's network storage boxes, business VPN gateways, firewalls, and, er, security scanners can be remotely hijacked by any miscreant, due to a devastating security hole in the firmware. If a miscreant can't directly connect to a vulnerable Zyxel device, "There are ways to trigger such crafted requests even if an attacker does not have direct connectivity to a vulnerable device," noted Carnegie Mellon's CERT Coordination Center in its advisory on the matter.

Zyxel 0day Affects its Firewall Products, Too
2020-02-26 14:43

On Monday, networking hardware maker Zyxel released security updates to plug a critical security hole in its network attached storage devices that is being actively exploited by crooks who specialize in deploying ransomware. Today, Zyxel acknowledged the same flaw is present in many of its firewall products.

Zyxel Patches Zero-Day Vulnerability in Network Storage Products
2020-02-25 15:43

Networking devices vendor Zyxel has released patches for several network attached storage devices to address a critical vulnerability that is already being exploited by cybercriminals. "A remote code execution vulnerability was identified in the weblogin.cgi program of Zyxel NAS products running firmware version 5.21 and earlier. Missing authentication for the program could allow attackers to perform remote code execution via OS command injection," Zyxel explains in an advisory.

Zyxel Fixes 0day in Network Storage Devices
2020-02-24 17:13

Networking hardware vendor Zyxel today released an update to fix a critical flaw in many of its network attached storage devices that can be used to remotely commandeer them. Holden said the seller of the exploit code - a ne'er-do-well who goes by the nickname "500mhz" -is known for being reliable and thorough in his sales of 0day exploits.

Zyxel launches family of WiFi 6 solutions for service providers based upon IEEE 802.11ax standard
2020-02-20 02:00

Zyxel Communications, a leading provider of secure broadband networking, Internet access and connected home products, announced its family of solutions for service providers based upon IEEE 802.11ax, the latest Wi-Fi specifications standard. The new WiFi 6 solutions will enable service providers to provide subscribers with multi-gig WAN connectivity to the home through fiber, 5G and GFast networks.

Zyxel launches ZyWALL VPN1000 VPN Firewall, an all-in-one security solution for SMBs
2020-02-04 02:30

Zyxel Communications launched the ZyWALL VPN1000 VPN Firewall, an all-in-one security solution for small and medium businesses. The flagship of the growing Zyxel family of ZyWALL VPN firewalls, VPN1000 is an integrated security solution that combines a powerful firewall with high-performance VPN tunnel capabilities to protect the local network against threats and safeguard data communications between multiple locations or hybrid clouds.

Zyxel redesigns its Nebula Cloud Networking Solution, expands product family
2020-01-14 01:30

Zyxel Communications, a leading provider of secure broadband networking, Internet access and connected home products, announced the release of a major redesign of the Nebula Cloud Networking Solution. In addition to a new, enhanced user interface, Zyxel has made it easier for SMBs and MSPs to maximize the potential of their Nebula cloud networks with the addition of new intelligent management tools and expansion of the comprehensive Nebula family of access points and switches.