Tag

Network Security

All articles tagged with #network security

technology1 month ago•3 min saved

Cloudflare's IPv6 BGP misconfiguration triggers a 25-minute global route leak

Cloudflare disclosed a 25-minute IPv6 BGP route leak caused by a policy misconfiguration that caused internal iBGP IPv6 routes to be redistributed to external peers in Miami, leading to congestion, packet loss, and roughly 12 Gbps of dropped traffic; the issue was halted by reverting the change and pausing automation, with Cloudflare proposing safeguards such as stricter export controls, CI/CD checks, early detection, RFC 9234 validation, and broader RPKI ASPA adoption to prevent recurrence.

via BleepingComputer|

#bgp #cloudflare #ipv6

network-security1 month ago•2 min saved

Cisco Patches Critical ISE Security Flaw Following Public Exploit

Cisco has released patches for a medium-severity security flaw in its Identity Services Engine (ISE) and ISE Passive Identity Connector (ISE-PIC) following the public release of a proof-of-concept exploit, which could allow attackers with administrative credentials to access sensitive information. The vulnerability affects multiple Cisco versions, and users are urged to update to the latest releases as no workarounds are available. Additionally, fixes have been provided for two other medium-severity bugs impacting Cisco products like Cisco Secure Firewall and Cisco IOS XE.

via The Hacker News|

#cisco #ise #network-security

network-security1 month ago•2 min saved

RondoDox Botnet Exploits React2Shell Flaw to Hijack IoT Devices and Servers

Cybersecurity researchers have uncovered a nine-month campaign where the RondoDox botnet exploited the critical React2Shell vulnerability (CVE-2025-55182) to hijack IoT devices and web servers, deploying malware, cryptocurrency miners, and Mirai variants, with the threat still active as of December 2025. Organizations are urged to update vulnerable software, segment IoT devices, and enhance monitoring to prevent infection.

via The Hacker News|

#botnet #iot-security #network-security

network-security2 months ago•2 min saved

WatchGuard Fireware OS VPN and Firewall Vulnerabilities Under Active Exploitation

WatchGuard has issued patches for a critical VPN security flaw in Fireware OS (CVE-2025-14733) that is actively being exploited in the wild, affecting multiple versions and configurations. Threat actors are targeting affected devices, with indicators of compromise provided. Users are urged to update their systems immediately and follow mitigation steps to prevent exploitation.

via The Hacker News|

#cve-2025-14733 #exploitation #fireware-os

technology4 months ago•0 min saved

F5 Hack Sparks Urgent Cybersecurity Alerts and Stock Drop

F5, a networking software company, disclosed a long-term breach that poses an imminent threat of cyberattacks on thousands of networks, including those operated by the US government and Fortune 500 companies, potentially due to a nation-state hacking group.

via WIRED|

#breach #cybersecurity #f5

network-security5 months ago•2 min saved

Cisco Issues Urgent Fix for Critical IOS Zero-Day Exploits

Cisco has issued a warning about a high-severity, actively exploited vulnerability in IOS and IOS XE Software (CVE-2025-20352) that affects SNMP protocols, allowing remote attackers with certain credentials to execute arbitrary code or cause a denial-of-service. The flaw, rooted in a stack overflow, has been patched in Cisco IOS XE Software Release 17.15.4a, but mitigation involves restricting SNMP access to trusted users and monitoring SNMP activity.

via The Hacker News|

#cisco #dos #ios-software

network-security5 months ago•2 min saved

SonicWall Urges Password Resets Following Cloud Backup Breach

SonicWall has urged customers to reset passwords after a security breach exposed encrypted firewall configuration backup files for less than 5% of its customers, potentially aiding attackers in exploiting firewalls. The breach involved brute-force attacks on cloud backups, with no evidence of files being leaked online. SonicWall recommends verifying backup status, resetting passwords and TOTP, and importing new preferences. The incident coincides with ongoing attacks by the Akira ransomware group exploiting SonicWall vulnerabilities to gain network access and disable security defenses.

via The Hacker News|

#cloud-backup #cybersecurity #data-breach

world6 months ago•1 min saved

Nevada State Offices Closed Due to Cybersecurity Breach

Nevada state offices have closed and websites are offline following an unspecified network security incident, likely a cyberattack, with authorities collaborating to address the disruption.

via Reuters|

#cyberattack #disruption #network-security

world6 months ago•1 min saved

Nevada Government Offices Suspend Services Due to Security Breach

Nevada state government offices are closed due to a network security incident, with authorities investigating the cause and working to restore services, while emergency systems remain operational and residents are warned about potential scams.

via CNN|

#cybersecurity-incident #fbi #government-offices

cybersecurity6 months ago•2 min saved

Russian State Cyber Actors Exploit Legacy Network Vulnerabilities for Espionage

The FBI warns of Russian FSB cyber actors exploiting vulnerabilities in networking devices, particularly targeting critical infrastructure in the US and globally, using tools like SNMP and SMI to conduct reconnaissance and unauthorized access, with ongoing guidance for mitigation and reporting suspected intrusions.

via Internet Crime Complaint Center (IC3) (.gov)|

#cisco-vulnerabilities #cyber-threat #cybersecurity

cryptocurrency6 months ago•2 min saved

Monero Survives 51% Attack Despite Hashrate Concerns

Monero (XMR) experienced a 51% attack impacting its network integrity, yet its price rose by $11 in 24 hours, reaching $266 amid increased trading volume. The attack raised concerns over decentralization and stability, but XMR's price showed signs of a bullish breakout despite potential risks of a pullback. The incident highlights ongoing security challenges in the crypto space.

via AMBCrypto|

#51percent-attack #cryptocurrency #monero

network-security6 months ago•4 min saved

New DDoS Flaws Enable Attackers to Turn Domain Controllers into Botnets

Researchers have discovered a new technique called Win-DDoS that exploits flaws in Windows LDAP and RPC protocols to turn public domain controllers into a powerful botnet for DDoS attacks, without requiring code execution or credentials, and identified multiple related DoS vulnerabilities that can be exploited remotely or internally, challenging assumptions about internal system safety.

via The Hacker News|

#ddos #domain-controllers #ldap

network-security7 months ago•1 min saved

Critical Cisco Vulnerability in Unified CM Exposes Root Access and Urges Phone Replacement

Cisco has issued security updates for a critical vulnerability (CVE-2025-20309) in Unified Communications Manager that allows attackers to gain root access using static credentials, potentially leading to severe network compromise. The flaw affects multiple versions and was discovered during internal testing, with no evidence of active exploitation yet.

via The Hacker News|

#cisco #cve-2025-20309 #network-security

cybersecurity1 year ago•2 min saved

Critical Palo Alto Firewall Vulnerabilities Actively Exploited

Palo Alto Networks has identified a critical zero-day vulnerability in its PAN-OS firewall management interface, which is being actively exploited to deploy web shells for persistent remote access. The flaw, with a CVSS score of 9.3, allows unauthenticated remote command execution and requires no user interaction. While patches are not yet available, users are urged to secure their management interfaces. The vulnerability is distinct from other recent critical flaws in Palo Alto Networks products, and there is no evidence linking the activities.

via The Hacker News|

#cybersecurity #network-security #palo-alto-networks

network-security1 year ago•2 min saved

CISA and Palo Alto Networks Alert on Active Exploitation of Firewall Vulnerabilities

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has flagged two critical vulnerabilities in Palo Alto Networks' Expedition software, which are being actively exploited. These flaws, CVE-2024-9463 and CVE-2024-9465, could allow attackers to execute arbitrary OS commands or access sensitive data. Federal agencies are required to update their systems by December 5, 2024. Palo Alto Networks has released patches and is investigating a new remote command execution vulnerability affecting some firewall interfaces.

via The Hacker News|

#cisa #cybersecurity #exploitation