RE: https://mastodon.green/@fthy/116280147057528781

#SSLVPN was a mistake. Please stop already, just remove those devices from your networks and start enjoying your life again.
#cybersecurity

Краткий взгляд на UserGate SSL VPN портал

Современные требования к ИБ диктуют необходимость предоставления сотрудникам защищенного доступа к корпоративным сервисам без потери уровня контроля, удобства и производительности, при этом следуя пути импортозамещения. UserGate NGFW реализует функцию SSL VPN портала (Веб-портал) , которая позволяет осуществлять доступ ко внутренним FTP-, RDP-, SSH- и Web-серверам используя только браузер, не требуя установки специализированного ПО в операционной системе. Данный материал представляет собой небольшой обзор компонента: от его настройки до нюансов, обнаруженных в ходе его эксплуатации. Читать

https://habr.com/ru/articles/996402/

#usergate #ngfw #sslvpn #sase #ztna

https://www.fortiguard.com/psirt/FG-IR-25-934

FortiGate SSLVPN vuln CVE-2025-68686

(Not) rated highly yet. However, I would promptly patch it (and quickly move away from SSL VPN, regardless of the vendor; instead use IKEv2 EAP-TLS or WireGuard). I think this one might rapidly elevate to a RCE

#infosec #fortigate #fortinet #sslvpn

SonicWall-VPN-Einbruch: Angreifer deaktivieren EDR über Kernel-Ebene mit widerrufenen Treibern

Die Angreifer verschafften sich im Februar 2026 Zugang zum Zielnetzwerk über gestohlene SonicWall-SSLVPN-Anmeldedaten.

https://www.all-about-security.de/sonicwall-vpn-einbruch-angreifer-deaktivieren-edr-ueber-kernel-ebene-mit-widerrufenen-treibern/

#vpn #edr #sslvpn #ssl

Fortinet confirms active exploitation of CVE-2020-12812.
A long-standing FortiOS SSL VPN flaw can bypass 2FA due to username case-sensitivity mismatches - especially in legacy deployments.

https://www.technadu.com/fortinet-warns-july-disclosed-ssl-vpn-flaw-is-being-used-to-bypass/616801/

Thoughts on mitigating MFA bypass risks?

#InfoSec #Fortinet #SSLVPN #MFA

Is your enterprise VPN stuck in the SSL era? 🦖

We unpacked the mechanics behind common issues like TCP meltdown, DTLS fallback, and mobility struggles in our new guide.

See why the transport protocol matters and what a modern, WireGuard-based alternative looks like in practice:

https://defguard.net/blog/ssl-vpn-performance-protocol-problem/

#SSLVPN #WireGuard #OpenSource #NetworkEngineering

Akira Ransomware Exploits SonicWall SSL VPN Vulnerability to Exfiltrate Data and Deploy Ransomware
https://cyberpress.org/sonicwall-ssl-vpn-vulnerability/

#Infosec #Security #Cybersecurity #CeptBiro #Akira #Ransomware #Exploits #SonicWall #SSLVPN #Vulnerability #ExfiltrateData #DeployRansomware

Nove zakrpe SonicWalla rješavaju ranjivosti visokog rizika u Email Security i SonicOS SSLVPN platformama. Stručnjaci savjetuju administratorima da bez odlaganja ažuriraju sisteme kako bi spriječili potencijalne upade i DoS napade.

#CyberSigurnost #Ranjivosti #CVE #DoS #EmailSigurnost #SonicWall #SSLVPN #SonicOS #Ažuriranje

Pročitaj više: https://cybersigurnost.ba/sonicwall-objavio-hitne-zakrpe-kriticne-ranjivosti-mogu-paralizirati-email-security-i-sonicos-sslvpn/

Campaign #compromising #SonicWall #SSLVPN instances since October 4, 2025 (100 infections in 16 organizations known as of October 10). There is a suspicion, that the firewalls created cloud backups itself - without admin approval.

https://borncity.com/win/2025/10/12/sonicwall-sslvpn-sicherheitslucken-breit-ausgenutzt/

🚨 New: Ukrainian network FDN3 (AS211736) linked to mass brute-force + password spraying on SSL VPN & RDP devices.
🔎 Findings:
✔️ Overlaps with/ Seychelles bulletproof ASNs
✔️ Prefixes tied to Russian & spam networks
✔️ Likely feeding RaaS crews like Black Basta
💬 Should defenders push harder for ASN-level blocking?
👉 Follow @technadu for daily cyber intel.

#FDN3 #BruteForceAttack #SSLVPN #RDP #Cybersecurity #Botnet #Ukraine #Intrinsec