Security news aggregator

Latest coverage for Zyxel

Zyxel makes networking devices and software whose vulnerabilities, security advisories, and updates can affect access controls, data, and connected networks.

4 headlines in this view

Refine the feed

Search across headline titles and summaries.

Tag briefing

Background for this topic.

Zyxel is a networking-equipment vendor whose products include routers, firewalls and VPN gateways, switches, wireless access points, and some network-attached storage devices. These systems provide connectivity and, in many deployments, sit at the network edge or enforce access between internal networks and the internet. Their firmware and web-based administration interfaces are therefore central to how the equipment is configured and secured.

Security advisories for Zyxel devices matter because flaws in firmware or management services can enable unauthorized administration, configuration changes, or access through exposed WAN, VPN, or web interfaces. Risk depends on the affected model, firmware version, exposure, and configuration; it is not uniform across the product range. Defenders should maintain an accurate device inventory, track model-specific advisories, restrict management access to trusted networks, disable unnecessary internet-facing services, and apply supported updates promptly. Devices that are end-of-support or cannot be patched may require isolation or replacement, while logs and configuration changes can help identify attempted compromise.

Volume over time

Weekly headline count for the current query.

Showing 4 most recent headlines Filtered view
Bank Info Security 1 year, 5 months ago

Breach Roundup: DeepSeek Leaked Sensitive Data

Also: Infostealer Malware Compromises Mexican Government ComputersThis week, DeepSeek exposed sensitive data, hackers exploited unpatched Zyxel flaws, infostealer malware on Mexican government computers, Smiths Group incident, PowerSchool breach notifications, an Apple zero-day, XWorm RAT backdoor, and Credit Control Corporation settled a lawsuit.

Firewall Vendor Warns Attackers Using Valid Credentials They Previously StoleAttackers wielding an emerging strain of ransomware called Helldown have been gaining a foothold in victims' networks by exploiting a previously unknown flaw in their Zyxel firewalls, security researchers warn. Zyxel has warned attackers may be using valid credentials they previously stole.

Bank Info Security 2 years, 1 month ago

Zyxel Releases Emergency Security Update for NAS Devices

Company Addresses Flaws in End-of-Life NAS DevicesNetworking solutions vendor Zyxel fixed critical vulnerabilities in end-of-life network-attached storage devices that allow remote code execution. It left two vulnerabilities allowing attacks by authenticated local attackers unpatched.

Bank Info Security 2 years, 4 months ago

Breach Roundup: White House Calls for Memory-Safe Languages

Also: Malware Campaign Hits GitHub, Affects Over 100,000 ReposThis week, the Biden administration urged software developers to adopt memory-safe programming languages and moved to restrict Chinese connected cars, a pharma giant was breached, researchers found malicious repos in GitHub, the Phobos RaaS group is targeting the U.S., and Zyxel patched devices.