all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Zyxel Firewall Vulnerabilities Reveal the Complexity of the IT Infrastructure Supply Chain

Add to bookmarks
Nov. 16, 2023, 12:05 p.m. | MalBot

Malware Analysis, News and Indicators - Latest topics malware.news

Recently SektorCERT (previously EnergiCERT) published a report on what they state is the largest known cyber attack against Danish critical infrastructure. Digging through the report it appears that an unauthenticated remotely exploitable vulnerability in Zyxel firewalls (CVE-2023-28771) was leveraged to gain the initial foothold. 


This particular vulnerability was externally reported to Zyxel in April 2023 by an independent third party. The vulnerable service was software implementing IPSec and exploited over UDP port 500 using a “specially crafted” IKEv2 packet. Rapid7 …

attack complexity critical critical infrastructure cve cve-2023-28771 cyber firewall firewalls infrastructure it infrastructure report reveal sektorcert state supply supply chain unauthenticated vulnerabilities vulnerability zyxel zyxel firewalls

Visit resource

More from malware.news / Malware Analysis, News and Indicators - Latest topics

Prophetic Post by Intern on CVE-2023-1389 Foreshadows Mirai Botnet Expansion Today, (Thu, Nov 30th) 2 hours ago | malware.news
botnet cve cve-2023-1389 detections +18
ISC Stormcast For Thursday, November 30th, 2023 https://isc.sans.edu/podcastdetail/8758, (Thu, Nov 30th) 4 hours ago | malware.news
topic
Sysdig Achieves the Amazon EKS Ready Designation 6 hours ago | malware.news
amazon amazon eks amazon web services application +21
Kimsuky Targets South Korean Research Institutes with Fake Import Declaration 6 hours ago | malware.news
actor ahnlab asec backdoor +24
Personal Information Sales Used as Bait to Distribute Malware 7 hours ago | malware.news
actor ahnlab asec attack +20
2023-11-20 - DarkGate infection 7 hours ago | malware.news
analysis article darkgate infection +6
2023-11-22 - AgentTesla infection with FTP data exfil 7 hours ago | malware.news
agenttesla analysis article data +9
2023-11-06 - 404 TDS --> Unidentified malware --> Cobalt Strike 7 hours ago | malware.news
analysis article cobalt cobalt strike +7
2023-11-27 - TA577 pushes IcedID (Bokbot) variant 7 hours ago | malware.news
analysis article bokbot icedid +6

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Paid internship - Cybersecurity [BGSW]

@ Bosch Group | Warszawa, Poland
View on infosec-jobs.com

Cybersecurity Officer

@ People In Need | Prague 2, Prague, Czechia
View on infosec-jobs.com

University -Cybersecurity Consultant

@ Booz Allen Hamilton | USA, CA, San Diego (1615 Murray Canyon Rd)
View on infosec-jobs.com

Senior Security Engineer, Detection Engineering

@ Lyft | Seattle, WA
View on infosec-jobs.com

Architecte de la sécurité des applications / Application Security Architect

@ Genetec | Montreal, Quebec, Canada
View on infosec-jobs.com

Telecommunications Sector| SIEM Engineer

@ Devoteam | Lisbon, Portugal
View on infosec-jobs.com
View more jobs