Ivanti, Fortinet, Palo Alto, and Cisco keep shipping the same class of bug: memory-unsafe C on the unauthenticated, internet-facing path of their VPNs and firewalls, much of it ransomware-linked and slow to be disclosed. Patching the CVE often does not remove an attacker who already got in. The...
Source: [HackerNoon](https://hackernoon.com/why-enterprise-security-appliances-keep-breaking-the-same-way?source=rss)