Zyxel Archives

Vulnerabilities

Zyxel Issues ‘No Patch’ Warning for Exploited Zero-Days

Multiple Zyxel legacy DSL CPE products are affected by exploited zero-day vulnerabilities that will not be patched.

Ionut ArghireFebruary 5, 2025

Malware & Threats

New Zyxel Zero-Day Under Attack, No Patch Available

GreyNoise reports active exploitation of a newly discovered zero-day vulnerability in Zyxel CPE devices. There are no patches available.

Ryan NaraineJanuary 29, 2025

Vulnerabilities

Nvidia, Zoom, Zyxel Patch High-Severity Vulnerabilities

Nvidia, Zoom, and Zyxel have released patches for multiple high-severity vulnerabilities across their products.

Ionut ArghireJanuary 15, 2025

Vulnerabilities

CISA Warns of Zyxel Firewall Vulnerability Exploited in Attacks

A second vulnerability in Zyxel firewalls has been exploited in Helldown ransomware attacks over the past weeks.

Ionut ArghireDecember 4, 2024

Ransomware

Recent Zyxel Firewall Vulnerability Exploited in Ransomware Attacks

A ransomware group has been observed exploiting a recently patched command injection vulnerability in Zyxel firewalls for initial access.

Ionut ArghireNovember 25, 2024

Vulnerabilities

Zyxel Patches Critical Vulnerabilities in Networking Devices

Zyxel has released patches for multiple vulnerabilities in its networking devices, including a critical flaw impacting access points and security routers.

Ionut ArghireSeptember 4, 2024

Malware & Threats

Recent Zyxel NAS Vulnerability Exploited by Botnet

A Mirai-like botnet has started exploiting a critical-severity vulnerability in discontinued Zyxel NAS products.

Ionut ArghireJune 25, 2024

Vulnerabilities

‘NsaRescueAngel’ Backdoor Account Again Discovered in Zyxel Products

Critical vulnerabilities in discontinued Zyxel NAS products allow unauthenticated attackers to execute arbitrary code and OS commands.

Ionut ArghireJune 5, 2024

Network Security

Zyxel Patches Remote Code Execution Bug in Firewall Products

Taiwanese networking vendor Zyxel confirms security flaws in firewall and access points put users at risk of remote code execution attacks.

Ryan NaraineFebruary 26, 2024

Network Security

Major Security Flaws in Zyxel Firewalls, Access Points, NAS Devices

Zyxel patches at least 15 security flaws that expose users to authentication bypass, command injection and denial-of-service attacks.

Ryan NaraineNovember 30, 2023

Malware & Threats

Multiple DDoS Botnets Exploiting Recent Zyxel Vulnerability

Multiple DDoS botnets have been observed targeting CVE-2023-28771, a Zyxel firewall vulnerability patched in April.

Ionut ArghireJuly 20, 2023

Network Security

Zyxel Urges Customers to Patch Firewalls Against Exploited Vulnerabilities

Zyxel urges customers to update ATP, USG Flex, VPN, and ZyWALL/USG firewalls to prevent exploitation of recent vulnerabilities.

Ionut ArghireJune 5, 2023

SECURITYWEEK NETWORK:

ICS:

All posts tagged "Zyxel"

Vulnerabilities

Zyxel Issues ‘No Patch’ Warning for Exploited Zero-Days

Malware & Threats

New Zyxel Zero-Day Under Attack, No Patch Available

Vulnerabilities

Nvidia, Zoom, Zyxel Patch High-Severity Vulnerabilities

Vulnerabilities

CISA Warns of Zyxel Firewall Vulnerability Exploited in Attacks

Ransomware

Recent Zyxel Firewall Vulnerability Exploited in Ransomware Attacks

Vulnerabilities

Zyxel Patches Critical Vulnerabilities in Networking Devices

Malware & Threats

Recent Zyxel NAS Vulnerability Exploited by Botnet

Vulnerabilities

‘NsaRescueAngel’ Backdoor Account Again Discovered in Zyxel Products

Network Security

Zyxel Patches Remote Code Execution Bug in Firewall Products

Network Security

Major Security Flaws in Zyxel Firewalls, Access Points, NAS Devices

Malware & Threats

Multiple DDoS Botnets Exploiting Recent Zyxel Vulnerability

Network Security

Zyxel Urges Customers to Patch Firewalls Against Exploited Vulnerabilities

Featured

Cyberwarfare

China’s Secret Weapon? How EV Batteries Could be Weaponized to Disrupt America

Management & Strategy

RSA Conference 2025 Announcements Summary (Day 1)

CISO Strategy

JPMorgan Chase CISO Fires Warning Shot Ahead of RSA Conference

Vulnerabilities

SAP Zero-Day Possibly Exploited by Initial Access Broker

Data Breaches

5.5 Million Patients Affected by Data Breach at Yale New Haven Health

Cybercrime

Cyberattack Hits British Retailer Marks & Spencer

Data Breaches

Korean Telco Giant SK Telecom Hacked

Latest News

Network Security

How do You Know if You’re Ready for a Red Team Partnership?

Artificial Intelligence

SentinelOne’s Purple AI Athena Brings Autonomous Decision-Making to the SOC

Cybersecurity Funding

Pistachio Raises $7 Million for Cybersecurity Training Platform

Cybersecurity Funding

LayerX Raises $11 Million for Browser Security Solution

Cybersecurity Funding

Cybersecurity Firms Raise Over $1.7 Billion Ahead of RSA Conference 2025

Vulnerabilities

Google Tracked 75 Zero-Days in 2024

Management & Strategy

RSA Conference 2025 Announcements Summary (Day 1)

Daily Briefing Newsletter