#BSI WID-SEC-2025-1090: [NEU] [mittel] #WatchGuard #Firebox: Mehrere Schwachstellen ermöglichen Cross-Site Scripting
Ein entfernter, authentisierter Angreifer mit Administratorrechten kann mehrere Schwachstellen in WatchGuard Firebox ausnutzen, um einen Cross-Site Scripting Angriff durchzuführen.
https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-1090
Effectief beheer van beveiligingshulpmiddelen: inzicht van corey nachreiner https://www.trendingtech.news/trending-news/2025/01/51698/effectief-beheer-van-beveiligingshulpmiddelen-inzicht-van-corey-nachreiner #cyberbeveiliging #tool sprawl #Corey Nachreiner #beveiligingsbeheer #WatchGuard #Trending #News #Nieuws
And btw, more hardware should be completely red. 😍
Not really #retro, but I digged up my old, decommissioned #WatchGuard XTM 5 to update it with pfSense 2.7.2 and use it again for safely networking retro computers. Had it flashed with an unlocked BIOS many years ago already and running with pfSense 2.3.3 in 2017/18 when I still had LAN (now only WLAN).
Anyway, point is, WatchGuard is a big player in the industry, but despite that and still being around, their very first product, the Firebox 10 from 1996 (still under the brand "Seattle Software Labs"), which was a real game-changer for security of webservers and company networks, has left no traces on the internet - apart from being mentioned on Wikipedia. No pictures, specs, articles or anything. It's shocking to see the short life cycle of information in the digital age.
Watchguard AuthPoint und Cloud Web UI machen in Europa heute keine Freude.
#WatchGuard AuthPoint MFA issues due to global SSL VPN brute force attack https://www.watchguard.com/wgrd-partners/blog/global-ssl-vpn-brute-force-activity-and-authpoint-service-disruptions
Scarica il white paper. Come proteggere i dati provenienti dalle telecamere e perché è importante.: Secsolution.com Notizie, Tecnologie, Soluzioni, Approfondimenti, Formazione per i professionisti della security in Italia
#elmat #watchguard #Cybersecurity #sicurezza #fisica http://dlvr.it/T8mXZd #Newsletter
Complete Technologies, with the support of WatchGuard, have come on board as the second Gold sponsor for BSides Saskatoon.
Complete Technologies is one of Saskatoon's premier MSP and MSSPs. Utilizing industry best practices, they continue to grow and keep Saskatoon secure.
Thank you both for supporting the local InfoSec community!
#CompleteTechnoligies #WatchGuard #BSides #Saskatoon #CyberSecurity #BSidesYXE #YXEEvents #SaskatoonEvents #Conference #InfoSec #InformationSecurity
Download gratuito. Una guida per la sicurezza del tuo impianto di Videosorveglianza: Secsolution.com Notizie, Tecnologie, Soluzioni, Approfondimenti, Formazione per i professionisti della security in Italia
#elmat #watchguard #Cybersecurity #sicurezza #fisica http://dlvr.it/T8SrSc #Newsletter
Attacker Hunting Firewalls #cisco #citrix #f5 #pulsevpn #ivanti #watchguard #fortinet https://i5c.us/d30758
In meiner IT Laufbahn durfte ich ja schon viel sehen und erleben aber eine #watchguard #firewall ist wirklich auf einer Stufe mit #sonicwall. Das es Leute gibt, die sich so was wirklich anschaffen... Unbegreiflich.
So, Strom wieder da, alles wieder hochgefahren, #VMware ist dein Freund 👍🏼, wieder alles synchron mit Serverraum 2, eine #Watchguard #Firebox wohl beim einschalten den Geist aufgegeben, 2. auf Standby ist auch dein Freund 😎
Notiz an mich: Datastore einschalten, Kaffee trinken, dann erst #ESX-Server einschalten… oder wie #Yoda sagt: Patience you must have! 😉
Niemand auf der Arbeit hat was gemerkt und ich muss mich im neuen Jahr mit der Buchhaltung rumschlagen warum ich denn wohl gearbeitet habe 🤮
Abenteuer IT Selbständigkeit
#Wochenbericht (KW47):
- Mo: #unifi Wlan Optimierung
- Di - Do: #Watchguard #schulung als Vorbereitung zur Zertifizierung
- Fr: #Avahi #mDNS Proxy, #OPNsense Support
Generell: Operative Themen, weiter neue #Webseite mit Inhalten füllen
@feinste_netzwerke
#ComputingCompetence
#WatchGuard lanza una solución para proteger nuestra identidad digital… https://www.europapress.es/portaltic/ciberseguridad/noticia-watchguard-lanza-solucion-proteger-identidad-evitar-venta-credenciales-dark-web-20230712115516.html
Things I‘ll try to avoid for the rest of my life - #Watchguard. Unbelievable bad „customer“ experience, different statements from different supporters, solutions which don’t support standard development a customer environment can go through.
No Stars - No Recommendation.
Very strange behavior with #AzureAD, #MultifactorAuthentication and #ActiveDirectory #Migration. Maybe someone has an idea? Any help is much appreciated.
Situation: As usual we sync our #OnPrem ADs (at the moment five of them) with #AAD and use the mS-DS-ConsistencyGuid as the Source Anchor.
Last year we needed to "move" a user from one OnPrem (H) Domain to another (D). We created a new user in Domain H, removed the user in Domain D from the sync, copy/pasted his mS-DS-ConsistencyGuid from Domain D to Domain H and started the sync of the user in Domain H. So the user used the new credentials from Domain H but kept his 365 Data which he generated before with his account from Domain D.
A few weeks before we integrated #Multifactor #Authentication through #Watchguard #Authpoint MFA and activated it for the whole company and every user in every domain. Now as soon as the user changed his password for the first time since the MFA got in place, it was activated for him and the issues began.
Issue: When trying to logging into 365 with Authpoint MFA, the error message explains, that Azure awaits the the #immutableID based on the ObjectGUID of Domain H. But since we copy/pasted the mS-DS-ConsistencyGuid from the old Domain D, this is based on the ObjectGUID from the user of Domain D and so an authentication does not happen. If we change the immutableID to the awaited based on the ms-DS-ConsistencyGuid of Domain H, the user can log into Azure/365, but obviously the sync stops because ms-DS-Cons and immutableID dont match anymore.
So, for one person, that is maybe something you can do very dirty by editing the data in the metaverse, but unfortunately we are running soon a AD migration project where every user will be migrated to another single domain. So for me it seems like we are a few steps away from everything will explode?
Anybody has a hint/idea/solution/anything else? Every help and #boost is welcome and appreciated.
Ransomware Up 627% in Latest Internet Security Report -- THE Journal
https://thejournal.com/articles/2023/03/30/ransomware-up-627-in-latest-internet-security-report.aspx
#ransomware #security #technology #edtech #education #schools #k12 #watchguard
#WatchGuard Technologies gibt vierteljährlich einen #InternetSecurity-Report (#ISR) heraus, der auf freiwillig weitergegebenen anonymisierten Feed-Daten aktiver WatchGuard-Fireboxen basiert. Jetzt ist der Report für das 3. Quartal 2022 erschienen. Er informiert über aktuelle #Malware- und #Netzwerk-Trends und liefert #Sicherheitsstrategien sowie #Verteidigungstipps. Eine kostenfreie Zusammenfassung gibt es unter: https://www.watchguard.com/de/wgrd-resource-center/security-report-q3-2022.
Actions Target Russian Govt. Botnet, Hydra Dark Market https://krebsonsecurity.com/2022/04/actions-target-russian-govt-botnet-hydra-dark-market/ #GermanFederalCriminalPoliceOffice #MainIntelligenceDirectorate #U.S.DepartmentofTreasury #U.S.DepartmentofJustice #FederalSecurityService #Ne'er-Do-WellNews #CyclopsBlink #Dragonfly2.0 #WebFraud2.0 #ArsTechnica #HydraMarket #Ransomware #BeserkBear #RussianFSB #VoodooBear #WatchGuard #DanGoodin #VPNFilter #Garantex #NotPetya #Sandworm #Trisis #Triton
