Home
Tech info
Technology
Science
Life
Application
Electric
Program
Mobile
Windows 10
Windows 11Warning: Detecting a very serious vulnerability in Cyberoam, a common firewall system in Vietnam
VSEC is broadcasting a warning about an extremely dangerous vulnerability with the code name CVE-2019-17059 on Cyberoam. According to experts, this gap is dangerous at 9/10 - almost the highest in the rating scale, which can greatly affect many Vietnamese businesses. This vulnerability was discovered on the version of CyberoamOS before 10.6.6 MR-6.
- Warning: Jenkins exists a serious security hole that helps hackers gain control of computers of many Vietnamese businesses
Cyberoam is a firewall protecting website based on user authentication, supporting real-time protection of organizations and businesses against attacks and cyber security threats.
Currently, more than 96,000 devices in the world use Cyberoam publicly. In Vietnam, Cyberoam devices are also used by many companies and banks for their security solutions.
To exploit this vulnerability, hackers will access and send packets containing exploit code to the web admin interface or SSL VPN Consoles (SSL VPN Consoles) to hijack the device. If successful, the bad guy can remotely execute unauthorized commands without providing a username and password.
The danger is that the bad guy will gain the highest level of access to allow any action on the victim's Cyberoam device, such as a deeper attack on the system, tracking all message data, turning off functions. protection, install backdoors into the intranet .
As recommended by VSEC, Vietnamese organizations and businesses using Cyberoam should immediately implement the following measures to ensure safety.
- Cyberoam needs to be updated immediately to the latest version.
- When transmitting data, it is necessary to use encryption methods, including in internal networks.
- Improve user awareness of information security.
- In addition to firewall devices, it is necessary to simultaneously conduct security testing, evaluation and vulnerability scanning on open systems, applying world security standards such as OWASP, ISO 27008.
Micah SotoYou should read it
- Internet Explorer has vulnerabilities, unused users are still hacked
- Detecting a series of vulnerabilities can help hackers disable metal detectors at airports
- Top 30 serious security holes are being exploited by hackers the most
- Take a look at the most significant threats from the security world in 2019
- Warning of dangerous vulnerabilities on WinRAR, users should uninstall or upgrade to a new version
- Microsoft silently updated Windows 10 to patch 2 serious security holes
- Detecting security holes that cause a series of D-Link VPN routers to be remotely attacked
- 10 interesting facts about black holes in the universe (Part 1)
May be interested
- Victims hacked hackers' servers when they were caught paying ransom, rescuing thousands of other victims
this guy hacked the hackers' own device and helped unlock thousands of other victims of data theft. - Already have Vietnamese interface and subtitles on Netflix entertainment and movie viewing platformvietnamese users accessing the movie and entertainment platform will be able to explore the rich content repository with vietnamese subtitles and voiceover.
- Directing too many lost travelers, Google Maps was 'boycotted' by an Italian townrecently, google maps continued to be involved in the scandal of crying badly when it was banned from circulating on the territory of the town of sardinia (in italy).
- Warning: A website appears to help bad guys lock iCloud remotely and turn your iPhone into a brickthis site allows bad guys to turn any iphone into a paperweight if the owner is open.
- Esports titles are so famous that they become the 'National Game' of a nation in the worldno longer just simple electronic games, these esports games have grown to become a national game in several countries around the world.
- 'Laughing out of tears' topped the list of the 10 most popular emojis in the worldrecently, the unicode federation - which manages the setting of international standards for characters, for the first time in history published a list of the 10 most frequently used emojis in the world.
Technology story
What is a firewall? General knowledge about Firewall- What is a firewall? Overview of Firewall
- Warning of dangerous Spring4Shell vulnerability, there are signs of scanning and exploiting
- How to turn on the router's built-in firewall
- Instructions to reset Windows Firewall Rules to the initial default state
What is a firewall? General knowledge about Firewall
What is a firewall? Overview of Firewall
Warning of dangerous Spring4Shell vulnerability, there are signs of scanning and exploiting
How to turn on the router's built-in firewall
Instructions to reset Windows Firewall Rules to the initial default state