Hacked VPN100
All Replies
-
Hi,
We had the same problem with USG Flex 500 V5.37 - few times someone logged to device from WAN using built in admin and created another user with SSL VPN access, then he got to local network and logged via RDP to serwer using credentials saved in USG Flex for LDAP authentication. Could he retrieve that domain password from the device memory?
And what with built in admin? Is it some backdoor or I should worry that our passwords leaked somehow? There was no failed attempts in logs, just first successfull logon.
0
Freshman Member
Categories
- All Categories
- 415 Beta Program
- 2.3K Nebula
- 141 Nebula Ideas
- 94 Nebula Status and Incidents
- 5.5K Security
- 216 USG FLEX H Series
- 262 Security Ideas
- 1.4K Switch
- 71 Switch Ideas
- 1K Wireless
- 39 Wireless Ideas
- 6.3K Consumer Product
- 243 Service & License
- 382 News and Release
- 81 Security Advisories
- 27 Education Center
- 8 [Campaign] Zyxel Network Detective
- 3K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 83 About Community
- 71 Security Highlight
