Zyxel memperingatkan cacat RCE kritis di lebih dari selusin router

Kamis, 26 Februari 2026

Dilaporkan oleh AI

Zyxel telah mengeluarkan peringatan tentang cacat keamanan eksekusi kode jarak jauh (RCE) kritis yang dapat memengaruhi lebih dari selusin router miliknya. Perusahaan tersebut telah menangani segenggam kerentanan mengkhawatirkan di perangkatnya. Pembaruan ini merupakan bagian dari upaya berkelanjutan untuk mengamankan peralatan jaringan.

Zyxel, produsen peralatan jaringan, telah memperingatkan pengguna tentang cacat keamanan eksekusi kode jarak jauh (RCE) kritis yang berpotensi memengaruhi lebih dari selusin model router. Menurut TechRadar, kerentanan tersebut menimbulkan risiko signifikan bagi perangkat yang terkena dampak. Sebagai tanggapan, Zyxel telah merilis perbaikan untuk beberapa cacat router yang mengkhawatirkan guna mengurangi masalah ini. Peringatan tersebut menekankan pentingnya menambal kerentanan semacam itu dengan segera untuk mencegah eksploitasi. Tidak ada model router spesifik atau detail eksploitasi yang diberikan dalam laporan awal. Peringatan tersebut diterbitkan pada 26 Februari 2026, menekankan langkah-langkah keamanan proaktif di pasar router.

FCC bans new foreign-made routers as security risk

Selasa, 24 Maret 2026 Dilaporkan oleh AI Gambar dihasilkan oleh AI

The Federal Communications Commission announced on March 23, 2026, that new consumer-grade routers manufactured outside the US pose an unacceptable national security risk and will be added to its Covered List. The ban applies to sales of new models but spares existing and previously authorized routers. Manufacturers may seek exemptions by planning to shift production to the US.

BeyondTrust RCE flaw enables code execution without login

A critical remote code execution vulnerability has been discovered in multiple BeyondTrust products. The flaw, rated 9.9 out of 10 in severity, allows hackers to run code on affected systems without needing to log in. The issue was reported on February 10, 2026.

Veeam patches three critical security flaws in backup servers

Jumat, 13 Maret 2026 Dilaporkan oleh AI

Veeam has addressed three critical-severity security vulnerabilities that could expose backup servers to remote code execution attacks. The company issued patches to mitigate these risks. The announcement highlights ongoing concerns in cybersecurity for data protection tools.

Teknologi

Experts claim ransomware attacks increasingly target firewalls

Teknologi

Critical flaws discovered in n8n workflow tool

Asia

China warns of retaliation to EU's cybersecurity crackdown on Huawei, ZTE

Simple hack grants access to 7,000 DJI robovacs

A straightforward hack enabled the owner of a new DJI Romo robot vacuum to connect with thousands of other devices worldwide. The incident highlights an ongoing security vulnerability in the product. TechRadar reported the details on February 18, 2026.

New AirSnitch attack bypasses Wi-Fi client isolation

Kamis, 26 Februari 2026 Dilaporkan oleh AI

Researchers have unveiled AirSnitch, a series of attacks that undermine client isolation in Wi-Fi networks, allowing unauthorized communication between devices. The technique exploits low-level network behaviors and affects routers from major manufacturers including Netgear, D-Link, and Cisco. Presented at the 2026 Network and Distributed System Security Symposium, the findings highlight vulnerabilities in home, office, and enterprise setups.

US agencies warn of Iranian hackers targeting critical infrastructure PLCs

The FBI, CISA, NSA, EPA, Department of Energy, and US Cyber Command issued a joint advisory warning of intensified cyberattacks by Iranian-affiliated hackers on programmable logic controllers (PLCs) in US critical infrastructure. Attacks since at least March 2026 have caused operational disruptions and financial losses in government facilities, wastewater, water, energy, and municipal systems, amid escalating tensions in the US-Israel war with Iran.

22 April 2026 09.46