Newest security incident (Remote mng, SSL VPN)
Ally MemberAll Replies
-
I had some verifications among different devices (USG20-VPN, USG20W-VPN, USG40, USG60, USG60W) and i found unwanted users.For all devices, firmware version 4.63 (not the latest one, according to this topic)0
-
Hi @kyssling
Based on our investigation so far, a small subset of Zyxel security appliances is targeted. Currently we haven’t observed any direct correlation with specific firmware versions. The most effective way is to check if there is any unknown SSL VPN user account, such as “zyxel_sllvpn”, “zyxel_ts”, or “zyxel_vpn_test”, has been created. If not, your device is not affected, and please follow the mitigations below as a precaution.0
Guru Member
Zyxel Employee
Categories
- 6.8K All Categories
- 1.3K Nebula
- 26 Nebula Ideas
- 28 Nebula Status and Incidents
- 3.8K Security
- 199 Security Ideas
- 691 Switch
- 25 Switch Ideas
- 572 WirelessLAN
- 8 WLAN Ideas
- 4.5K Consumer Product
- 95 Service & License
- 213 New and Release
- 35 Security Advisories
- 479 FAQ
- 216 Nebula FAQ
- 109 Security FAQ
- 72 Switch FAQ
- 66 WirelessLAN FAQ
- Documents
- 20 Nebula Monthly Express
- 42 About Community
- 31 Security Highlight
