Home » Tag: DLP Firewall

Tag Archives: DLP Firewall

Home » Tag: DLP Firewall

New Exploit Threatens Over 9,000 Hackable Cisco RV320/RV325 Routers Worldwide

If the connectivity and security of your organization rely on Cisco RV320 or RV325 Dual Gigabit WAN VPN routers, then you need to immediately install the latest firmware update released by the vendor last week.

Cyber attackers have actively been exploiting two newly patched high-severity router vulnerabilities in the wild after a security researcher released their proof-of-concept exploit code on the Internet last weekend.

The vulnerabilities in question are a command injection flaw (assigned CVE-2019-1652) and an information disclosure flaw (assigned CVE-2019-1653), a combination of which could allow a remote attacker to take full control of an affected Cisco router.

The first issue exists in RV320 and RV325 dual gigabit WAN VPN routers running firmware versions 1.4.2.15 through 1.4.2.19, and the second affects firmware versions 1.4.2.15 and 1.4.2.17, according to the Cisco’s advisory.

Both the vulnerabilities, discovered and responsibly reported to the company by German security firm RedTeam Pentesting, actually resides in the web-based management interface used for the routers and are remotely exploitable.

  • CVE-2019-1652—The flaw allows an authenticated, remote attacker with administrative privileges on an affected device to execute arbitrary commands on the system.
  • CVE-2019-1653—This flaw doesn’t require any authentication to reach the router’s web-based management portal, allowing attackers to retrieve sensitive information including the router’s configuration file containing MD5 hashed credentials and diagnostic information.
  •  

The PoC exploit code targeting Cisco RV320/RV325 routers published on the Internet first exploits CVE-2019-1653 to retrieve the configuration file from the router to obtain its hashed credentials and then exploits CVE-2019-1652 to execute arbitrary commands and gain complete control of the affected device.

Researchers from cybersecurity firm Bad Packets said they found at least 9,657 Cisco routers (6,247 RV320 and 3,410 RV325) worldwide that are vulnerable to the information disclosure vulnerability, most of which located in the United States.

The firm shared an interactive map, showing all vulnerable RV320/RV325 Cisco routers in 122 countries and on the network of 1,619 unique internet service providers.

Bad Packets said its honeypots detected opportunistic scanning activity for vulnerable routers from multiple hosts from Saturday, suggesting the hackers are actively trying to exploit the flaws to take full control of the vulnerable routers.

The best way to protect yourself from becoming the target of one such attack is to install the latest Cisco RV320 and RV325 Firmware release 1.4.2.20 as soon as possible.

Administrators who have not yet applied the firmware update are highly recommended to change their router’s admin and WiFi credentials considering themselves already compromised.

Gajshield DLP Firewall

GAJSHIELD Next Generation Firewall Unique Context Sensitive Network based Data Leak Prevention System with Cloud Security

GAJSHIELD Next Generation DLP Firewall
Unique Context Sensitive Network based Data Leak Prevention System with Cloud Security

GAJSHIELD DLP Firewall

Next Generation DLP Firewall

Unique Context Sensitive Network based Data Leak Prevention System with Cloud Security

GajShield’s layered security platforms are designed to provide in depth protection against various attacks by tightly integrating key security functions and to securely connect remote offices and partners. GajShield Network Security Appliances combines ICSA Certified Firewall, IPS, VPN, URL Filtering, Virus screening and Bandwidth Management in a single appliance to provide in depth protection at the network edge.

ICSA Certified

  • User Sense UTM – Policy combination of User, Source, IP
  • address and Service
  • Policy based control for Firewall, IPS, URL Filtering,
  • Anti-virus, Anti-spam, DLP and Bandwidth Management
  • Access Scheduling
  • Policy based Source & Destination NAT
  • H.323 NAT Traversal, 802.1q VLAN Support
  • DoS, DDoS, Syn Flood Attack prevention

For SOHO specification

GS 15nuGS20nu
Firewall
– Concurrent Sessions1900003300000
– New Sessions/Second510028000
– Firewall Throughput230 Mbps3.2 Gbps
– VPN Throughput100 Mbps325 Mbps
– UTM Throughput170 Mbps280 Mbps
– Antivirus Throughput140 Mbps450 Mbps
– IPS Throughput160 Mbps720 Mbps
– VPN Tunnels25550
– Configurable WAN / DMZ / LAN portsYesYes
– 10/100 Interfaces44
– 10/100/1000 Interface

For SME

GS 80nu

GajShield ‘GS 40dc’ provides content aware data context, which helps you to secure your enterprise beyond next generation firewalls. The GajShield 40dc appliance is targeted at high speed Internet security device for SOHO/SMB. The 40dc appliance manages gigabit traffic with content aware data context platform providing enterprise grade security even to the smallest enterprise.

GS 40d c FEATURESSPEC IF ICAT IONS
10/100
10/100/10004
Concurrent Sessions320000
New Sessions Per Second8000
Firewall Throughput2.5 Gbps
VPN Throughput400 Mbps
UTM Throughput350 Mbps
AntiVirus Throughput425 Mbps
IPS Throughput475 Mbps
VPN Tunnels150
Configurable WAN/LAN/DMZ portscx Yes

For Enterprise

GS 130d c FEATURESGajShield 260d FeaturesGS 320dc-f  FeaturesGajShield 330d FeaturesGajShield 930d FeaturesGajShield 1030d Features
10/10061020/1620/16
10/100/10008244/84/8
Concurrent Sessions85000085000090000011000003000000
New Sessions Per Second26000260003000060000150000
Firewall Throughput5.5 Gbps5.5 Gbps7 Gbps20 Gbps25 Gbps
VPN Throughput1.9 Gbps1.9 Gbps2.5 Gbps12 Gbps15 Gbps
UTM Throughput1 Gbps1 Gbps2100 Mbps3.5 Gbps5 Gbps
AntiVirus Throughput1200 Mbps1200 Mbps2200 Mbps5.7 Gbps7.2 Gbps
IPS Throughput1500 Mbps1500 Mbps2400 Mbps9.5 Gbps11.5 Gbps
VPN Tunnels4000400060002000025000
Configurable WAN/LAN/DMZ portsyesYesYesYesYes

Gajshield Firewall Price

Gajshield DLP FirewallPrice

For more details just call or email us on
Phone:+91 9582907788
Email: sales@itmonteur.net

Read More »