While the news doesn’t hover over the topic, the situation related to the Log4jShell exploit hasn’t changed much since last month, and the vulnerability continues to be exploited by threat actors targeting corporate networks.Īs I write this, news relating to threat actors like ransomware gangs, nation-state cyber-espionage groups, crypto-mining gangs, initial access brokers, and DDoS botnets have all exploited the vulnerability in their previous operations. “It could be that Zyxel was specifically targeted since they published a blog stating they were impacted by the log4j vulnerability,” Cashdollar said in a blog post on Wednesday. The attack was expressed as an input validation problem in the Serv-U web login Screen Microsoft stated the attackers used the Zero-day to circumvent input validation on the log-in process with the help of non-standard characters and then exploited the Log4Shell to control the Serv-U servers.Īpart from these attacks, researchers reported tracking a Mirai DDoS botnet targeting ZyXEL networking devices. The vulnerability is labeled CVE-2021-35247.
#Summit zyxel firmware Patch
Microsoft stated that it notified SolarWinds, which released a patch on Tuesday. Microsoft stated that it uncovered a threat actor exploiting Log4Shell along with a zero-day vulnerability in the SolarWinds Serv-U file-sharing server. The attacks, which require immediate attention, are the ones Microsoft has reported. The devices are known to contain the Log4j library in their software, stated two reports published by Microsoft and Akamai. SolarWinds and ZyXEL devices are being attacked by cybercriminals who are searching for Log4jShell vulnerability aka log4j vulnerability. We are committed to supporting them to thrive digital transformation, securely and reliably.Pic credit: Tima Miroshnichenko from Pexels “With this iteration we are providing the best-fit solution and a consistent networking experience for small businesses who were hit hard by COVID and overlooked by most networking brands. “Since the launch of the Nebula Cloud Networking platform in 2016, we have continued to evolve the product in line with customer needs and the changing network infrastructure demands of small businesses,” explained Gordon Yang, President of Zyxel Networks. Nebula provides SMBs with a scalable, high-performance networking solution that delivers a unified, consistent user experience for ease of deployment and management. The new NWA90AX and WAX630S access points, which will be available in Q1 2022, can be managed from a single Nebula platform. Zyxel announced the addition of two new WiFI 6 access points to the family of more than 80 devices that are support by the powerful Nebula Cloud Networking Platform. The Nebula Cloud Networking Platform provides flexibility for SMBs CNP is licensed per access point and will offer a one-month trial.
The service versions include CNP (includes the IP reputation filter only and is compatible with NWA1123-ACv3, WAC500, and WAC500H access points), and CNP+ (includes the IP reputation filter and application throttling, and is compatible with NWA110AX, NWA210AX, WAX510D, WAX610D, WAX630S, and WAX650S access points). The new CNP service can be licensed and runs directly on compatible Zyxel access points. Application visibility with throttling prioritizes bandwidth for business-critical applications to ensure optimal performance of important business processes and ensuring maximum network reliability. The integrated IP reputation filter blocks undesirable website content while also preventing data theft and security breaches for connected devices. CNP also delivers reliable, secure wireless connectivity for connected applications or business assets, such as video streaming, conference calls, point of sale systems, security cameras, and business laptops.
#Summit zyxel firmware license
A network security service, the Zyxel CNP license incorporates multiple elements that increase WiFi protection for users in commercial venues. Zyxel Networks announced the expansion of its Nebula Cloud Networking solution to include a WiFi access point security service designed to support small businesses as they adapt to post-COVID challenges.īusiness-class security for even the smallest networksĭesigned for small or micro-businesses that cannot afford a business firewall, Zyxel has created the Connect and Protect (CNP) AP security service license.
0 kommentar(er)
