Networks warned of security threats

ISLAMABAD: Pakistani networks are facing security threats from companies providing cybersecurity and VPN access.

Flaws have been identified in the networks of cybersecurity provider Palo Alto and the SonicWall, the company which provides VPN access. There are fears of hackers accessing the networks used by these companies. The National Cyber Emergency Response Team of Pakistan has issued an advisory. All the ministries, divisions, institutions and enterprises have been warned of cyber threats.

According to the advisory, vulnerability has been identified in the web management interface of Palo Alto Networks. There may be serious risks for institutions using Palo Alto and SonicWall, and vulnerabilities in the networks can lead to unauthorised access, the advisory said.

Attackers can access the system without any login or permission. The advisory warns data of institutions that do not take security measures can be stolen, and due to lack of security measures, institutions may lose control over network security devices.

The advisory recommends immediate action against security vulnerabilities, while institutions are being asked to implement security patches for Palo Alto Networks and SonicWall.

Firewalls and VPN solutions should be updated to the latest firmware versions, while access to management interfaces limited to trusted IP addresses only. A multi-factor authentication system should be adopted to prevent unauthorised access, advisory recommended.