Massive Scanning Campaign Targets Palo Alto VPN Portals, Raising Security Concerns
Security researchers have detected an extensive scanning operation targeting Palo Alto Networks GlobalProtect VPN portals, with nearly 24,000 IP addresses probing systems. The coordinated campaign, primarily focused on US targets, suggests systematic reconnaissance potentially preceding future exploitation attempts.
Critical SonicWall VPN Vulnerability Puts Enterprise Networks at Risk
Security researchers have uncovered active exploitation of a severe SonicWall firewall vulnerability that allows attackers to hijack VPN connections. With a near-maximum severity rating of 9.8, organizations are urged to patch affected systems immediately as thousands remain exposed.
Critical Alert: J-magic Malware Targets Enterprise Networks Through Juniper Router Vulnerabilities
A sophisticated malware campaign dubbed J-magic is actively compromising corporate networks by targeting Juniper routers running JunoOS. The attacks use a custom backdoor that creates reverse shell access when triggered by magic packets, with infections detected across 36 global IP addresses.
Critical Security Flaw in Subaru Starlink System Exposed Vehicle Control and Location Data
Security researchers discovered a major vulnerability in Subaru's Starlink system that could allow hackers to track vehicle locations and control door locks through compromised admin accounts. The flaw, which affected vehicles across multiple countries, was swiftly patched after disclosure but highlights growing cybersecurity risks in connected cars.
Critical Tunneling Protocol Vulnerabilities Put 4.2M Devices at Global Risk
Researchers uncover severe security flaws in common tunneling protocols affecting millions of VPN servers, routers, and network infrastructure worldwide. The vulnerabilities could enable attackers to hijack systems and conduct anonymous attacks by exploiting unauthenticated data transfer mechanisms.
Critical VPN Client Vulnerabilities Allow Attackers to Deploy Malware Through Fake Servers
Security researchers have discovered severe flaws in Palo Alto Networks' GlobalProtect and SonicWall's NetExtender VPN clients that enable attackers to execute malicious code through rogue VPN servers. The vulnerabilities could allow credential theft and system compromise through unauthorized software updates with elevated privileges.