Newest security incident (Remote mng, SSL VPN)
Ally MemberAnswers
-
I had some verifications among different devices (USG20-VPN, USG20W-VPN, USG40, USG60, USG60W) and i found unwanted users.For all devices, firmware version 4.63 (not the latest one, according to this topic)0
-
Hi @kyssling
Based on our investigation so far, a small subset of Zyxel security appliances is targeted. Currently we haven’t observed any direct correlation with specific firmware versions. The most effective way is to check if there is any unknown SSL VPN user account, such as “zyxel_sllvpn”, “zyxel_ts”, or “zyxel_vpn_test”, has been created. If not, your device is not affected, and please follow the mitigations below as a precaution.0
Master Member
Zyxel EmployeeCategories
- 6K All Categories
- 1.2K Nebula
- 16 Nebula Ideas
- 12 Nebula Status and Incidents
- 3.4K Security
- 185 Security Ideas
- 593 Switch
- 24 Switch Ideas
- 425 WirelessLAN
- 6 WLAN Ideas
- 4.2K Consumer Product
- 56 Service & License
- 190 New and Release
- 24 Security Advisories
- 451 FAQ
- 208 Nebula FAQ
- 99 Security FAQ
- 65 Switch FAQ
- 63 WirelessLAN FAQ
- Documents
- 20 Nebula Monthly Express
- 31 About Community
- 20 Security Highlight
