Guidance to help identify, remediate and defend against this security incident
Note:
ZLD4.65 for ZyWALL USG Series/ZyWALL 110/310/1100
ZLD5.02 for ZyWALL ATP Series/USG FLEX Series/VPN Series
You can do cloud auto upgrade by clicking the cloud icon.
Or download firmware from Myzyxel.com server and upload firmware from local PC.
Password notification and security policy check are implemented in this release. Follow below steps to provide optimized protection to your device.
Password change notification
After upgrading firmware to 4.65/5.02, your first login attempt will pop-up a password change notification page that includes,
a. All admin-type user accounts
b. Date of the last password change
c. Password expiration date
We strongly recommend to change all admin-type password again and remove all unwanted admin account.
Security Policy Check
If there is any HTTPS/SSL VPN service port open from WAN to ZyWALL without any restriction on source address, a Security Check Notification page will pop up.
Follow the wizard to change service port for HTTPS/ SSL VPN with trusted Host and change 2FA authentication service port.
After finish, system will auto create policy control rules.
Note: If you changed Web management service port to others, then you have to enter correct service port in your browser to log back in
We also strongly recommend running a thorough configuration examination to see if your device has been compromised. From our field observation, the compromised device will add unwanted accounts and add Policy/Firewall rules to allow undesired traffic into your network.
Delete the unknown accounts
Remove the unknown firewall rules
If you are unable to immediately upgrade to the latest available firmware, please follow the Mitigation Steps to minimize the risk. However, the best solution is still to upgrade to the latest available firmware.
Categories
- All Categories
- 385 Beta Program
- 2.1K Nebula
- 116 Nebula Ideas
- 80 Nebula Status and Incidents
- 5.1K Security
- 74 USG FLEX H Series
- 247 Security Ideas
- 1.3K Switch
- 70 Switch Ideas
- 907 WirelessLAN
- 34 WLAN Ideas
- 5.9K Consumer Product
- 210 Service & License
- 334 News and Release
- 71 Security Advisories
- 21 Education Center
- 5 [Campaign] Zyxel Network Detective
- 1.9K FAQ
- 886 Nebula FAQ
- 415 Security FAQ
- 228 Switch FAQ
- 198 WirelessLAN FAQ
- 46 Consumer Product FAQ
- 137 Service & License FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 73 About Community
- 63 Security Highlight