Users of Zyxel Firewall and VPN devices should update their devices as the current firmware might have a backdoor account. Researchers found over 100,000 Zyxel devices vulnerable as a backdoor account with admin privileges existed in the firmware.
Backdoor Account Discovered In Zyxel Firewall Researchers from the Dutch cybersecurity firm Eye Control have found a backdoor account in Zyxel firewall and VPN gateways. As elaborated in their blog post, the researcher found the backdoor account when rooting the device Zyxel USG40. This account with the username ‘zyfwp’ had admin privileges.