Backdoor account discovered in more than 100,000 Zyxel firewalls, VPN gateways

With profound apologies to Catalin Cimpanu for previously posting a plagiarized copy of his reporting, here is his report:

More than 100,000 Zyxel firewalls, VPN gateways, and access point controllers contain a hardcoded admin-level backdoor account that can grant attackers root access to devices via either the SSH interface or the web administration panel.

The backdoor account, discovered by a team of Dutch security researchers from Eye Control, is considered as bad as it gets in terms of vulnerabilities.

Device owners are advised to update systems as soon as time permits.

Read more on ZDNet.

About the author: Dissent

Comments are closed.