Hacked VPN100
Options
All Replies
-
Hi,
We had the same problem with USG Flex 500 V5.37 - few times someone logged to device from WAN using built in admin and created another user with SSL VPN access, then he got to local network and logged via RDP to serwer using credentials saved in USG Flex for LDAP authentication. Could he retrieve that domain password from the device memory?
And what with built in admin? Is it some backdoor or I should worry that our passwords leaked somehow? There was no failed attempts in logs, just first successfull logon.
0
Freshman Member
Categories
- All Categories
- 438 Beta Program
- 2.7K Nebula
- 188 Nebula Ideas
- 121 Nebula Status and Incidents
- 6.2K Security
- 454 USG FLEX H Series
- 303 Security Ideas
- 1.6K Switch
- 81 Switch Ideas
- 1.3K Wireless
- 44 Wireless Ideas
- 6.8K Consumer Product
- 278 Service & License
- 435 News and Release
- 88 Security Advisories
- 31 Education Center
- 10 [Campaign] Zyxel Network Detective
- 4.2K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 85 About Community
- 91 Security Highlight
