Five percent of VPN solutions remain unpatched and vulnerable

In 2020 we saw a huge shift to remote working, with VPN often the technology of choice for keeping connections secure. But a new Network Security Report from SpiderLabs at Trustwave reveals that this trend didn't go unnoticed by cybercriminals, with malicious actors targeting unpatched VPN vulnerabilities more frequently. More worrying is that by the end of 2020 five percent of VPN solutions remained unpatched and were still vulnerable to several of the most prominent VPN common vulnerabilities and exposures (CVEs). Indeed some had yet to be patched for a two-year-old Fortinet FortiOS SSL VPN path traversal vulnerability that can… [Continue Reading]