Backdoor account found in Zyxel firewall
Zyxel has released a patch, fixing a critical vulnerability, tracked as CVE-2020-29583, concerning a hardcoded undocumented secret account, that could be used by threat actors to login with admin privileges, allowing them to take control over the system. The undocumented account has an unchangeable password, that can be entered by any malicious third party to login to the SSH server with admin priveleges. According to Zyxel, the hardcoded credentials were put in place to deliver automatic firmware updates to connected access points through FTP. Read more...