Get a Pentest and security assessment of your IT network.

Cyber Security

Secret backdoor discovered in Zyxel firewalls and AP controllers

Over 100,000 Zyxel devices are potentially vulnerable to a secret backdoor caused by hardcoded credentials used to update firewall and AP controllers’ firmware. Dutch cybersecurity firm EYE discovered a secret hardcoded administrative account in the latest 4.60 patch 0 firmware. The account could be used to log into vulnerable devices over both SSH and the web interface. Since SSL VPN interface operates on the same port as web interface, Teusink found that many users have allowed port 443 to be accessible on the Internet.

Source: https://www.bleepingcomputer.com/news/security/secret-backdoor-discovered-in-zyxel-firewalls-and-ap-controllers/

Related posts
Cyber Security

Zip Codes & PII: Are They Personal Data?

Cyber Security

Zero-Day Vulnerabilities: User Defence Guide

Cyber Security

Zero Knowledge Voting with Trusted Server

Cyber Security

ZeroNet: 51% Attack Risks & Mitigation