News

Latest news on the subject of B2B cyber security >>> PR agencies: Add us to your mailing list - see contact! >>> Book an exclusive PartnerChannel for your news!

BSI: Zero-Day Attacks on Ivanti Connect Secure
B2B Cyber ​​Security ShortNews

The BSI warns: There are critical vulnerabilities in Ivanti products Connect Secure (ICS), Policy Secure and ZTA Gateway. The manufacturer has published a corresponding security advisory. This includes a critical vulnerability with a CVSS score of 9.0 out of 10. At the beginning of January 2025, the manufacturer Ivanti published an advisory on critical vulnerabilities in its products Ivanti Connect Secure (ICS), Policy Secure and ZTA Gateway. The security vulnerability CVE-2025-0282 is particularly serious, allowing an unauthenticated, remote attacker to execute arbitrary code on the affected systems. This vulnerability is classified as "critical" with a CVSS score of 9.0...

Read more

FortiOS and FortiProxy: Attacks on zero-day vulnerability
B2B Cyber ​​Security ShortNews

The BSI has already issued the second highest warning level, orange, for the actively exploited vulnerabilities in FortiOS and FortiProxy. The zero-day vulnerability CVE-2024-55591 is rated 9.6 out of 10 according to CVSS and is therefore critical. According to the BSI warning, Fortinet published an advisory on January 14th about a vulnerability in Fortiproxy and FortiOS, the operating system used on the FortiGate firewall product range, among others. The vulnerability with the identifier CVE-2024-55591 was rated 9.6 as critical according to the Common Vulnerability Scoring System (CVSS) and allows an unauthenticated attacker to gain super admin privileges. It is…

Read more

BSI: Critical 9.3 vulnerability in PaloAlto Networks Expedition
B2B Cyber ​​Security ShortNews

The BSI warns urgently about a critical vulnerability in the next-generation firewall (NGFW) platform PaloAlto Networks Expedition with a CVSS score of 9.3 out of 10. PaloAlto itself only rates the threat as 7.8 and as highly dangerous. The BSI writes in its warning about the next-generation firewall (NGFW) platform "PaloAlto Networks Expedition" with a critical CVSS score of 9.3: "A remote, anonymous attacker can exploit several vulnerabilities in PaloAlto Networks Expedition to manipulate data, disclose information, conduct a cross-site scripting attack, or execute commands." PaloAltoNetworks provides security advisory On January 8, 2025, Palo Alto Networks published a security warning...

Read more

First firewall with BSI BSZ security certificate
B2B Cyber ​​Security ShortNews

The Federal Office for Information Security – BSI for short – has certified the LANCOM R&S®Unified Firewall UF-360 with a security certificate in accordance with the “BSZ” standard, which is also used in critical infrastructures (KRITIS). The German network infrastructure and security supplier LANCOM System is the first company to receive a security certificate in accordance with the “BSZ” test procedure for a firewall. With the “Accelerated Security Certification”, the Federal Office for Information Security (BSI) is addressing, among other things, manufacturers of network components, as these are of outstanding importance for the defense against IT and cyber security risks. The LANCOM R&S®Unified Firewall UF-360 was certified with the…

Read more

Ransomware Helldown exploits vulnerabilities in Zyxel firewalls
B2B Cyber ​​Security ShortNews

As the BSI reports, there have been increasing attacks with the Helldown ransomware on corporate networks via a vulnerability in Zyxel firewalls. The attackers use a double extortion tactic by encrypting the data storage devices and at the same time threatening to publish previously stolen information. The first attacks occurred in August 2024, a larger wave followed in October. IT security researchers identified a vulnerability in Zyxel firewalls as a possible attack vector. It is still unclear what the security vulnerability is in detail or whether additional accounts were created before the vulnerability was patched. An analysis shows that both...

Read more

BSI: Brute-force attacks against Citrix Netscaler Gateways
B2B Cyber ​​Security ShortNews

The BSI is currently receiving an increasing number of reports of brute force attacks against Citrix Netscaler gateways from various KRITIS sectors and from international partners. The current attacks currently stand out from the usual attacks of this type only in the number of attacks reported. In brute force attacks, attackers try to guess weak username-password combinations with a massive number of login attempts. After attackers have successfully gained access, they usually try to consolidate access, e.g. via backdoors, and then compromise other internal systems. This can lead to data leakage and even complete encryption with ransomware. It is not just Citrix gateways in…

Read more

Analysis of BSI-listed APT group Earth Estries
Analysis of BSI listed APT group Earth Estries Image: Bing - AI

The APT group Earth Estries, also known as Salt Typhoon, FamousSparrow, GhostEmperor and UNC2286, which is listed by the BSI as active in Germany, has been analyzed in detail by Trend Micro. The group aggressively targets critical industries around the world in order to spy on them. Since 2023, Earth Estries has developed into one of the most aggressive Chinese advanced persistent threat (APT) groups, primarily targeting critical industries such as telecommunications companies and government agencies in the US, Asia-Pacific, the Middle East and South Africa. But the German BSI is now also warning about the group, as it has already been active in…

Read more

Virtualized Firewall for VS-NfD
Virtualized Firewall for VS-NfD

A German IT security specialist is setting standards: its virtualized firewall genugate Virtual has received approval from the Federal Office for Information Security (BSI) to process "classified information - for official use only" (VS-NfD). This makes genugate Virtual the only virtualized firewall in Germany that meets this high security standard. Dr. Günther Welsch, Head of Department V at the BSI, presented the approval for genugate Virtual to Matthias Ochs, Managing Director of genua, yesterday at genua's headquarters in Kirchheim. "genugate Virtual meets the high security requirements that our company has for products for processing data according to the level of secrecy...

Read more

BSI warns of 8.8 vulnerability in PDF reader
B2B Cyber ​​Security ShortNews

The PDF tool Foxit Reader, which is used as an alternative by many SMEs, has a highly dangerous vulnerability with a CVSS value of 8.8 out of 10. According to the BSI, in addition to the reader, the editor module is also affected in the Mac and Windows versions. Many SMEs avoided the PDF vulnerability problem that constantly occurred with Adobe Acrobat by switching to PDF readers and editor alternatives. A popular alternative is the Foxit Reader. But here too, the manufacturer must now confirm a highly dangerous security vulnerability that the BSI - the Federal Office for Information Security - is also warning about. It is the...

Read more

Mastodon: two highly dangerous vulnerabilities discovered 
B2B Cyber ​​Security ShortNews

In its series "Code Analysis of Open Source Software" (CAOS for short), the BSI has examined software for its security. It discovered two highly dangerous vulnerabilities in the Twitter or X alternative Mastodon. The BSI launched the "Code Analysis of Open Source Software" (CAOS for short) project in 2021. The aim of the project is to subject various open source software to a code analysis. The focus is on user software that is increasingly used by authorities or society. The code analysis is intended to strengthen confidence in the security properties of the product and to identify any...

Read more