Zyxel warns of critical RCE flaw in over a dozen routers

26 febbraio 2026

Riportato dall'IA

Zyxel has issued a warning about a critical remote code execution (RCE) security flaw that could affect more than a dozen of its routers. The company has addressed a handful of concerning vulnerabilities in its devices. This update comes as part of ongoing efforts to secure networking equipment.

Zyxel, a networking equipment manufacturer, has alerted users to a critical remote code execution (RCE) security flaw potentially impacting over a dozen router models. According to TechRadar, the vulnerability poses significant risks to affected devices. In response, Zyxel has released fixes for several worrying router flaws to mitigate these issues.

The warning highlights the importance of patching such vulnerabilities promptly to prevent exploitation. No specific router models or exploitation details were provided in the initial report. The advisory was published on February 26, 2026, emphasizing proactive security measures in the router market.

FCC bans new foreign-made routers as security risk

24 marzo 2026 Riportato dall'IA Immagine generata dall'IA

The Federal Communications Commission announced on March 23, 2026, that new consumer-grade routers manufactured outside the US pose an unacceptable national security risk and will be added to its Covered List. The ban applies to sales of new models but spares existing and previously authorized routers. Manufacturers may seek exemptions by planning to shift production to the US.

BeyondTrust RCE flaw enables code execution without login

A critical remote code execution vulnerability has been discovered in multiple BeyondTrust products. The flaw, rated 9.9 out of 10 in severity, allows hackers to run code on affected systems without needing to log in. The issue was reported on February 10, 2026.

Veeam patches three critical security flaws in backup servers

13 marzo 2026 Riportato dall'IA

Veeam has addressed three critical-severity security vulnerabilities that could expose backup servers to remote code execution attacks. The company issued patches to mitigate these risks. The announcement highlights ongoing concerns in cybersecurity for data protection tools.

Tecnologia

Experts claim ransomware attacks increasingly target firewalls

Tecnologia

Critical flaws discovered in n8n workflow tool

Asia

China warns of retaliation to EU's cybersecurity crackdown on Huawei, ZTE

Simple hack grants access to 7,000 DJI robovacs

A straightforward hack enabled the owner of a new DJI Romo robot vacuum to connect with thousands of other devices worldwide. The incident highlights an ongoing security vulnerability in the product. TechRadar reported the details on February 18, 2026.

New AirSnitch attack bypasses Wi-Fi client isolation

26 febbraio 2026 Riportato dall'IA

Researchers have unveiled AirSnitch, a series of attacks that undermine client isolation in Wi-Fi networks, allowing unauthorized communication between devices. The technique exploits low-level network behaviors and affects routers from major manufacturers including Netgear, D-Link, and Cisco. Presented at the 2026 Network and Distributed System Security Symposium, the findings highlight vulnerabilities in home, office, and enterprise setups.

US agencies warn of Iranian hackers targeting critical infrastructure PLCs

The FBI, CISA, NSA, EPA, Department of Energy, and US Cyber Command issued a joint advisory warning of intensified cyberattacks by Iranian-affiliated hackers on programmable logic controllers (PLCs) in US critical infrastructure. Attacks since at least March 2026 have caused operational disruptions and financial losses in government facilities, wastewater, water, energy, and municipal systems, amid escalating tensions in the US-Israel war with Iran.

22 aprile 2026 09:46