Network equipment maker Zyxel warns customers of active and ongoing attacks targeting a variety of corporate firewalls and other types of security applications.
In an email, the company announced that the target devices included security applications that have remote management or SSL VPN in the USG / ZyWALL, USG FLEX, ATP and VPN series with local ZLD -Firmware. The language in the email is scarce, but it seems that the attacks are targeting devices exposed to the internet. If the attackers manage to access the device, the email continues to say that they can connect to previously unknown accounts that are permanently attached to the devices.
close the hatches
“We are aware of the situation and have done our best to investigate and resolve it,” the email read posted on twittersaid. “The threat actor is trying to access a device over the WAN; if they are successful then …