[HackerNews] Zyxel Releases Patch for Critical Firewall OS Command Injection Vulnerability

Zyxel has moved to address a critical security vulnerability affecting Zyxel firewall devices that enables unauthenticated and remote attackers to gain arbitrary code execution.
“A command injection vulnerability in the CGI program of some firewall versions could allow an attacker to modify specific files and then execute some OS commands on a vulnerable device,” the company¬†said¬†in an advisory

Source: Read More (The Hacker News)

You might be interested in …

[ZDNet] This decade-old malware has picked up some nasty new tricks

All posts, ZDNet

The crafty Qakbot trojan has added ransomware delivery to its malware building blocks. Source: Read More (Latest topics for ZDNet in Security)

Read More

[ThreatPost] A Peek Inside the Underground Ransomware Economy

All posts, ThreatPost

Threat hunters weigh in on how the business of ransomware, the complex relationships between cybercriminals, and how they work together and hawk their wares on the Dark Web. Source: Read More (Threatpost)

Read More

[HackerNews] How Extended Security Posture Management Optimizes Your Security Stack

All posts, HackerNews

As a CISO, one of the most challenging questions to answer is “How well are we protected right now?” Between the acceleration of hackers’ offensive capabilities and the dynamic nature of information networks, a drift in the security posture is unavoidable and needs to be continuously compensated. Therefore, answering that question implies continuously validating the […]

Read More