Trendzz

Enhanced security features in the latest version of Cisco ASA and FTD now block VPN brute-force password attacks.

by



Cisco has added new security features to mitigate brute-force and password spray attacks on Cisco ASA and Firepower Threat Defense devices. These attacks were recently targeting VPN accounts on various networking devices. The new features help detect and block such attacks, reducing the impact on devices. Admins must enable these features on supported software versions to protect their networks. The features include blocking invalid VPN access, client initiation attacks, and repeated authentication attempts. While there may be some performance impact, it is recommended to enable these features to prevent unauthorized access and potential breaches.

read full article

We do not own the rights to this content & no infringement intended, CREDIT: The Original Source: www.bleepingcomputer.com

Trendzz Only Comment:

This

contains information about Cisco’s new security features to protect against brute-force and password spray attacks on Cisco ASA and Firepower Threat Defense devices. It explains the differences between these two types of attacks and how Cisco has addressed vulnerabilities discovered through massive brute-force attacks on VPN accounts. The article details new threat detection capabilities and features released by Cisco to mitigate these attacks, as well as the supported software versions and commands to enable these features. Overall, enabling these features is recommended to mitigate the risk of compromise from brute-force attacks.

.