Promotional image of computer router.

Enlarge (credit: Zyxel)

Hackers are attempting to exploit a recently discovered backdoor built into multiple Zyxel device models that hundreds of thousands of individuals and businesses use as VPNs, firewalls, and wireless access points.

The backdoor comes in the form of an undocumented user account with full administrative rights that’s hardcoded into the device firmware, a researcher from Netherlands-based security firm Eye Control recently reported. The account, which uses the username zyfwp, can be accessed over either SSH or through a Web interface.

A serious vulnerability

The researcher warned that the account put users at considerable risk, particularly if it were used to exploit other vulnerabilities such as Zerologon, a critical Windows flaw that allows attackers to instantly become all-powerful network administrators.

Read 9 remaining paragraphs | Comments

Translate »
Legal Notice: Views expressed in articles published in www.ebusinessbrief.com are those of the authors and www.ebusinessbrief.com or its owners take no responsibility regarding the same. Advertisements in www.ebusinessbrief.com are published for information of the subscribers. www.ebusinessbrief.com does not authenticate, endorse or guarantee any of the products or services or claims made by the Advertisers. Readers are advised to themselves verify the details. No part of this publication may be reproduced by any means without prior written permission from the Editor. Permission is normally granted wherever sufficient acknowledgement is given to www.ebusinessbrief.com.