AmberWolf researchers identified two vulnerabilities, dubbed “NachoVPN,” in popular VPN products SonicWall NetExtender and Palo Alto Networks GlobalProtect, which can be exploited by cyber-attackers to steal login credentials and drop malware. The vulnerabilities were reported and have since been addressed. AmberWolf also released a tool called NachoVPN, which simulates these attacks, aiming to support community contributions and identification of future vulnerabilities.
Found in the wild: The world’s first unkillable UEFI bootkit for Linux
Security firm ESET has found the first known example of a Linux UEFI bootkit, a type of malware that infects the Unified Extensible Firmware Interface.
