Why PoP Count Isn’t the Real Measure of Application Security Performance

When evaluating cloud security platforms, one question comes up again and again: “How many Points of Presence do you have?” At first glance, the logic seems sound. More locations should mean lower latency, faster response times, and better protection. The assumption is simple: if security is...

Fortinet Confirms Active FortiCloud SSO Bypass on Fully Patched FortiGate Firewalls

Fortinet has officially confirmed that it's working to completely plug a FortiCloud SSO authentication bypass vulnerability following reports of fresh exploitation activity on fully-patched firewalls. "In the last 24 hours, we have identified a number of cases where the exploit was to a device th...

ZTE ZXMP M721 安全漏洞

The ZTE ZXMP M721 is a metro edge OTN Optical Transport Network device from ZTE, China. The ZTE ZXMP M721 suffers from a private key disclosure vulnerability, which originates from a low-privilege user being able to bypass authorization checks to view the device's communication private key, and...

EUVD-2025-21172

Malicious code in bioql PyPI...

CVE-2024-36081

Westermo EDW-100 serial-to-Ethernet converter is affected by CVE-2024-36081. An unauthenticated GET request can download the device configuration, exposing cleartext usernames and passwords. Impact is rated CVSS v3.1 9.8 (CRITICAL) with network access, no user interaction. Affected firmware up to...

PT-2024-4479 · Westermo · Westermo Edw-100

Name of the Vulnerable Software and Affected Versions: Westermo EDW-100 devices through 2024-05-03 Description: The issue is related to the storage of a password in cleartext in a configuration file. An unauthenticated user can download this configuration file, potentially revealing the username...

From Ransomware to Cyber Espionage: 55 Zero-Day Vulnerabilities Weaponized in 2022

As many as 55 zero-day vulnerabilities were exploited in the wild in 2022, with most of the flaws discovered in software from Microsoft, Google, and Apple. While this figure represents a decrease from the year before, when a staggering 81 zero-days were weaponized, it still represents a significa...

Red Lion DA50N Data Forgery Issue Vulnerability

The Red Lion DA50N is a series of secure edge network gateways from Red Lion, U.S.A. The Red Lion DA50N is vulnerable to a data forgery issue that stems from the possibility that an authorized user could install a maliciously modified package file when updating the device via the Web UI, and that...

Red Lion DA50N has an unspecified vulnerability

The Red Lion DA50N is a series of secure edge network gateways from Red Lion, U.S.A. A security vulnerability exists in the Red Lion DA50N that could be exploited by an attacker to elevate to root access using the su command...

QID Spotlight: Discover CBL-Mariner Vulnerabilities using Qualys VMDR

The Qualys vulnerability signatures team has released a new series of signatures detections for CBL-Mariner Common Base Linux, allowing security teams to identify CBL-Mariner hosts and detect their vulnerabilities. CBL-Mariner Common Base Linux is developed by Microsoft and is a Linux distributio...

Akamai Focused on What's Next Following New Traffic Milestone

Akamai hit a new milestone last week when web traffic delivered across our edge network peaked at 200 terabits per second Tbps...

Can Edge Computing Exist Without the Edge? Part 2: Edge Computing

In part 1 of this series, I drew the architectural distinction between a centralized cloud platform and a distributed edge network. This is an important foundation upon which to explain the difference between cloud computing and edge computing. The two serve very different and complementary...

Akamai Edge Cloud: Scaling IoT, Part 2

IoT has tremendous possibilities to transform our world but will fall short of expectations if the underlying infrastructure cannot support the rapid exchange of massive amounts of information from billions of simultaneous and intermittent connections. Akamai Edge Cloud is designed to enable the...

Getting Insights into the Delivery Path of Media with Breadcrumbs

Problem Definition Media streaming typically involves three main components: a player, the origin, and a CDN. Typically, the content provider owns the player and the origin stack and hence is able to diagnose and troubleshoot issues, but the CDN for the most part is a black box. The player...

Taking Content Protection to the Edge

To protect our industry, we need to protect our content. That's been an ongoing theme in conversations with Akamai's broadcast customers whose streaming offerings have evolved into critical business units. The revenue loss figures in question aren't trivial, nor is the scope of the impact. Global...

Streamline OTT Delivery using Cloud Origins with Cloud Wrapper

By 2020, an estimated 92% of all workloads will be processed in cloud data centers. The emergence of public cloud providers has changed the way organizations build, deploy and manage their applications and workflows. For organizations that've made the decision to move their video workflows to the...

Ensure Highly Reliable First Mile Connectivity with Akamai Direct Connect

As linear OTT video services become mainstream, many broadcasters and online video distributors are increasingly looking for new ways to enhance service reliability. Many who manage their own origin infrastructures within a datacenter environment are seeking added assurance for ingest of their...

CVE-2017-16241

Incorrect access control in AMAG Symmetry Door Edge Network Controllers EN-1DBC Boot App 23611 03.60 and STD App 23603 03.60; EN-2DBC Boot App 24451 01.00 and STD App 2461 01.00 enables remote attackers to execute door controller commands e.g., lock, unlock, add ID card value by sending...

CVE-2017-16241

Incorrect access control in AMAG Symmetry Door Edge Network Controllers EN-1DBC Boot App 23611 03.60 and STD App 23603 03.60; EN-2DBC Boot App 24451 01.00 and STD App 2461 01.00 enables remote attackers to execute door controller commands e.g., lock, unlock, add ID card value by sending...