After adding post-quantum encryption (PQE) to all its apps in May, NordVPN now strives for cryptographic agility. Here's why ...

Fortinet reports active attacks exploiting CVE-2020-12812, a FortiOS SSL VPN flaw that can bypass two-factor authentication ...

GreyNoise has identified a coordinated credential-based campaign abusing VPN login portals from Cisco and Palo Alto Networks.

At least four Virtual Private Network (VPN) applications sold or made available to enterprise customers share security flaws, warns the Carnegie Mellon University CERT Coordination Center (CERT/CC) ...

Windscribe unveils new hashed anonymous accounts for extra privacy-conscious users, but traditional authentication remains.

Enterprise VPN applications developed by Palo Alto Networks, Pulse Secure, Cisco, and F5 Networks are storing authentication and session cookies insecurely according to a DHS/CISA alert and a ...

Attackers targeted admin accounts, and once authenticated, exported device configurations including hashed credentials and ...

An automated campaign is targeting multiple VPN platforms, with credential-based attacks being observed on Palo Alto Networks ...

The 25-employee company where I work just recently created an IT department of one (me), even though I have very little IT experience. I've solved some tough IT-ish problems for them, and have shown ...

For a long time the only way to use Active Directory (AD) for VPN authentication and authorization was to use a RADIUS server such as Cisco ACS that could use AD as an external database. With the ...