firewall

74,000 Fortinet firewall credentials exposed in FortiBleed data leak

credentials, critical infrastructure, Data leak, data theft, Don't miss, enterprise, firewall, Fortinet, Government, Hot stuff, Hudson Rock, News, VPN /

74,000 Fortinet firewall credentials exposed in FortiBleed data leak 2026-06-18 at 15:10 By Zeljka Zorz A Russian-speaking cybercriminal group has stolen credentials contained in the configuration files of nearly 74,000 Fortinet firewalls and VPN gateways around the world. The data was accidentally exposed by the group on a server, along with other artifacts and tools, […]

74,000 Fortinet firewall credentials exposed in FortiBleed data leak Read More »

Product showcase: NetGuard open-source firewall for Android

Android, Don't miss, firewall, Google Play, network monitoring, News, open source, Product showcase, software /

Product showcase: NetGuard open-source firewall for Android 2026-05-08 at 08:17 By Anamarija Pogorelec NetGuard is a free, open-source firewall for Android phones and tablets that provides users with a simple way to block internet access. Android does not allow VPN services to be chained, so the app uses the Android VPN service to route all

Product showcase: NetGuard open-source firewall for Android Read More »

State-sponsored hackers likely behind zero-day attacks on Palo Alto firewalls

0-day, APT, Don't miss, firewall, government-backed attacks, Hot stuff, News, Palo Alto Networks /

State-sponsored hackers likely behind zero-day attacks on Palo Alto firewalls 2026-05-08 at 01:14 By Zeljka Zorz Palo Alto Networks believes the in-the-wild exploitation of a zero-day vulnerability (CVE-2026-0300) in its firewalls is likely the work of state-sponsored threat actors. A flaw with no patch (yet) CVE-2026-0300 is a buffer overflow vulnerability in the User-ID Authentication

State-sponsored hackers likely behind zero-day attacks on Palo Alto firewalls Read More »

Palo Alto Zero-Day Exploited in Campaign Bearing Hallmarks of Chinese State Hacking

China, China APT, exploited, firewall, Nation-State, Palo Alto Networks, Vulnerabilities, Zero-Day /

Palo Alto Zero-Day Exploited in Campaign Bearing Hallmarks of Chinese State Hacking 2026-05-07 at 19:01 By Eduard Kovacs The cybersecurity firm has not explicitly accused China of being behind the attack, but the evidence suggests it was.  The post Palo Alto Zero-Day Exploited in Campaign Bearing Hallmarks of Chinese State Hacking appeared first on SecurityWeek.

Palo Alto Zero-Day Exploited in Campaign Bearing Hallmarks of Chinese State Hacking Read More »

Palo Alto Networks to Patch Zero-Day Exploited to Hack Firewalls

exploited, firewall, Palo Alto Networks, Vulnerabilities, vulnerability, Zero-Day /

Palo Alto Networks to Patch Zero-Day Exploited to Hack Firewalls 2026-05-06 at 09:24 By Eduard Kovacs CVE-2026-0300 affects the Captive Portal service of PAN-OS software on PA and VM series firewalls. The post Palo Alto Networks to Patch Zero-Day Exploited to Hack Firewalls appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View

Palo Alto Networks to Patch Zero-Day Exploited to Hack Firewalls Read More »

Pipelock: Open-source AI agent firewall

agentic AI, AI, cybersecurity, Don't miss, firewall, GitHub, Hot stuff, News, open source /

Pipelock: Open-source AI agent firewall 2026-05-04 at 09:46 By Mirko Zorz AI coding agents run with shell access, environment variables containing API keys, and unrestricted internet connectivity, creating a single point of failure where one compromised tool call can leak credentials to an attacker-controlled domain. Pipelock, an open-source security harness developed by Joshua Waldrep under

Pipelock: Open-source AI agent firewall Read More »

SonicWall Urges Immediate Patching of Firewall Vulnerabilities

firewall, patches, SonicWall, Vulnerabilities, vulnerability /

SonicWall Urges Immediate Patching of Firewall Vulnerabilities 2026-04-30 at 18:18 By Ionut Arghire The bugs could be exploited to bypass security controls, access restricted services, and crash firewalls. The post SonicWall Urges Immediate Patching of Firewall Vulnerabilities appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

SonicWall Urges Immediate Patching of Firewall Vulnerabilities Read More »

Product showcase: LuLu reveals unauthorized outbound connections from Mac apps

cybersecurity, firewall, macOS, network monitoring, News /

Product showcase: LuLu reveals unauthorized outbound connections from Mac apps 2026-04-27 at 07:03 By Anamarija Pogorelec LuLu is a free, open-source firewall for macOS that lets you control which apps are allowed to send data from your computer. macOS includes a built-in firewall, but it mainly handles incoming connections. LuLu also monitors outgoing traffic. Installing

Product showcase: LuLu reveals unauthorized outbound connections from Mac apps Read More »

New Cisco firewall malware can only be killed by pulling the plug

backdoor, CISA, Cisco, Don't miss, firewall, government-backed attacks, Hot stuff, NCSC, News /

New Cisco firewall malware can only be killed by pulling the plug 2026-04-24 at 13:17 By Zeljka Zorz Suspected state-sponsored attackers are using a custom backdoor to persistently compromise Cisco security devices (firewalls), the US CISA and the UK National Cyber Security Centre warned on Thusday. “The [Firestarter] malware (…) is relevant for both Cisco

New Cisco firewall malware can only be killed by pulling the plug Read More »

Progress Software fixes sneaky WAF bypass vulnerability (CVE-2026-21876)

Don't miss, enterprise, firewall, Hot stuff, News, OWASP, Progress, security update, vulnerability, web application security /

Progress Software fixes sneaky WAF bypass vulnerability (CVE-2026-21876) 2026-04-22 at 14:47 By Zeljka Zorz Progress Software has fixed a slew of high-severity vulnerabilities in MOVEit WAF and LoadMaster, including a flaw (CVE-2026-21876) that may allow attackers to bypass firewall detection. MOVEit WAF (web application firewall) is designed to protect Progress’s managed file transfer platform MOVEit

Progress Software fixes sneaky WAF bypass vulnerability (CVE-2026-21876) Read More »

Cisco FMC flaw was exploited by Interlock weeks before patch (CVE-2026-20131)

0-day, AWS, Cisco, Don't miss, enterprise, firewall, Hot stuff, News, Ransomware /

Cisco FMC flaw was exploited by Interlock weeks before patch (CVE-2026-20131) 2026-03-20 at 15:21 By Zeljka Zorz A critical vulnerability (CVE-2026-20131) in Cisco Secure Firewall Management Center (FMC) that Cisco disclosed and patched in early March 2026 has been exploited as a zero-day by the Interlock ransomware gang, Amazon CISO and VP of Security Engineering

Cisco FMC flaw was exploited by Interlock weeks before patch (CVE-2026-20131) Read More »

Cisco Firewall Vulnerability Exploited as Zero-Day in Interlock Ransomware Attacks

Cisco, exploited, Featured, firewall, InterLock, Ransomware, Vulnerabilities, vulnerability /

Cisco Firewall Vulnerability Exploited as Zero-Day in Interlock Ransomware Attacks 2026-03-19 at 11:01 By Eduard Kovacs Amazon found evidence that the FMC software vulnerability has been exploited since late January, and found links to Russia. The post Cisco Firewall Vulnerability Exploited as Zero-Day in Interlock Ransomware Attacks appeared first on SecurityWeek. This article is an

Cisco Firewall Vulnerability Exploited as Zero-Day in Interlock Ransomware Attacks Read More »

Cisco warns of SD-WAN Manager exploitation, fixes 48 firewall vulnerabilities

Cisco, Don't miss, firewall, Hot stuff, News, SD-WAN, vulnerability /

Cisco warns of SD-WAN Manager exploitation, fixes 48 firewall vulnerabilities 2026-03-05 at 15:59 By Zeljka Zorz Cisco has confirmed that two Catalyst SD-WAN Manager vulnerabilities (CVE-2026-20128 and CVE-2026-20122) patched in late February 2025 are being exploited by attackers. The exploited vulnerabilities (CVE-2026-20128, CVE-2026-20122) CVE-2026-20128 is a bug in the Data Collection Agent (DCA) feature of

Cisco warns of SD-WAN Manager exploitation, fixes 48 firewall vulnerabilities Read More »

IPFire ships its 200th core update with a new domain blocklist and kernel upgrade

cybersecurity, firewall, Linux, News, open source, OpenVPN, software /

IPFire ships its 200th core update with a new domain blocklist and kernel upgrade 2026-03-02 at 18:31 By Anamarija Pogorelec Network firewall distribution IPFire released Core Update 200, marking the 200th incremental update to the 2.29 branch. The release bundles a kernel upgrade, a beta domain blocklist service, security patches for OpenSSL and glibc, and

IPFire ships its 200th core update with a new domain blocklist and kernel upgrade Read More »

CISA orders US federal agencies to replace unsupported edge devices

CISA, Don't miss, firewall, Government, Hot stuff, network, News, router, USA /

CISA orders US federal agencies to replace unsupported edge devices 2026-02-06 at 18:24 By Zeljka Zorz The US Cybersecurity and Infrastructure Security Agency (CISA) issued a new binding operational directive aimed at reducing a long-standing cyber risk across federal networks: outdated “edge devices” that are not longer supported by vendors and aren’t receiving timely security

CISA orders US federal agencies to replace unsupported edge devices Read More »

OPNsense 26.1 brings updates to open-source firewall management

cybersecurity, Don't miss, firewall, News, open source, software, Threat Intelligence /

OPNsense 26.1 brings updates to open-source firewall management 2026-01-29 at 01:17 By Anamarija Pogorelec OPNsense, the open-source firewall and network security platform, reached version 26.1, adding a range of updates affecting management, traffic visibility, automation interfaces, and core services. Changes in firewall management and APIs Version 26.1, code-named Witty Woodpecker, introduces revisions to the firewall

OPNsense 26.1 brings updates to open-source firewall management Read More »

Fortinet starts patching exploited FortiCloud SSO zero-day (CVE-2026-24858)

0-day, Don't miss, firewall, Fortinet, FortiOS, Hot stuff, News, SSO, vulnerability /

Fortinet starts patching exploited FortiCloud SSO zero-day (CVE-2026-24858) 2026-01-28 at 02:21 By Zeljka Zorz Fortinet has begun releasing FortiOS versions that fix CVE-2026-24858, a critical zero-day vulnerability that allowed attackers to log into targeted organizations’ FortiGate firewalls. “This vulnerability was found being exploited in the wild by two malicious FortiCloud accounts, which were locked out

Fortinet starts patching exploited FortiCloud SSO zero-day (CVE-2026-24858) Read More »

New Wave of Attacks Targeting FortiGate Firewalls

exploited, firewall, FortiGate, Fortinet, patch bypass, Vulnerabilities /

New Wave of Attacks Targeting FortiGate Firewalls 2026-01-22 at 14:41 By Ionut Arghire Hackers bypass the FortiCloud SSO login authentication to create new accounts and change device configurations. The post New Wave of Attacks Targeting FortiGate Firewalls appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

New Wave of Attacks Targeting FortiGate Firewalls Read More »

Fully patched FortiGate firewalls are getting compromised via CVE-2025-59718?

Arctic Wolf Networks, Don't miss, firewall, Fortinet, FortiOS, Hot stuff, Huntress, News, privileged accounts, SSO, vulnerability /

Fully patched FortiGate firewalls are getting compromised via CVE-2025-59718? 2026-01-21 at 22:22 By Zeljka Zorz CVE-2025-59718, a critical authentication bypass flaw that attackers exploited in December 2025 to compromise FortiGate appliances, appears to persist in newer, purportedly fixed releases of the underlying FortiOS. According to Fortinet, CVE-2025-59718 had been fixed in FortiOS versions 7.6.4 or

Fully patched FortiGate firewalls are getting compromised via CVE-2025-59718? Read More »

aiFWall Emerges from Stealth With an AI Firewall

AI, Artificial Intelligence, firewall, Security Infrastructure /

aiFWall Emerges from Stealth With an AI Firewall 2026-01-21 at 17:24 By Kevin Townsend aiFWall is a firewall protection for AI deployments built to use AI to improve its own performance. The post aiFWall Emerges from Stealth With an AI Firewall appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

aiFWall Emerges from Stealth With an AI Firewall Read More »

Scroll to Top