July 11, 2024 at 11:49AM Palo Alto Networks has released security updates to address several vulnerabilities in its products, including a critical bug impacting the Expedition migration tool, allowing an admin account takeover. Another flaw named BlastRADIUS could enable privilege escalation in certain PAN-OS firewall versions. Users are advised to update to the latest versions … Read more
July 9, 2024 at 11:51AM InkBridge Networks warned of a 30-year-old design flaw in RADIUS protocol enabling advanced attackers to bypass multi-factor authentication. The BlastRADIUS attack can authenticate anyone to a local network, posing major risks to corporate networks. The flaw, discovered by several research groups, allows attackers to modify access requests, making all RADIUS … Read more
July 9, 2024 at 09:21AM Cybersecurity researchers discovered a vulnerability in the RADIUS network authentication protocol named BlastRADIUS, which allows attackers to carry out Mallory-in-the-middle attacks. This flaw affects all standards-compliant RADIUS clients and servers, making it crucial for ISPs and organizations to update their networking equipment. The vulnerability, with a CVSS score of 9.0, … Read more