'Pakistani networks facing security threats from VPN'

• New findings raise concerns about unauthorised access by hackers.
• PKCERT urges institutions to bolster cybersecurity measures.
• Attackers can access system sans any login or permission: advisory
  

ISLAMABAD: Pakistani networks are under heightened security threats due to vulnerablities in cybersecurity and virtual private network (VPN) services provided by companies like Palo Alto and SonicWall

Recent findings reveal flaws in Palo Alto's web management interface, raising concerns about potential unauthorised access by hackers.

In response, the National Cyber Emergency Response Team of Pakistan (PKCERT), has issued a stern advisory to all ministries, divisions, and institutions, urging them to bolster their cybersecurity measures.

According to the advisory, vulnerability has been identified in the web management interface of Palo Alto Networks. 

There may be serious risks for institutions using Palo Alto and SonicWall, and vulnerabilities in the networks can lead to unauthorised access, the advisory said.

Attackers can access the system without any login or permission. The advisory warns data of institutions that do not take security measures can be stolen, and due to lack of security measures, institutions may lose control over network security devices.

The advisory recommends immediate action against security vulnerabilities, while institutions are being asked to implement security patches for Palo Alto Networks and SonicWall.

Firewalls and VPN solutions should be updated to the latest firmware versions, while access to management interfaces limited to trusted IP addresses only. 

A multi-factor authentication system should be adopted to prevent unauthorised access, advisory recommended.