Both the US NSA and UK NCSC warn hackers are actively exploiting vulnerabilities in VPN products
Both the US National Security Agency (NSA) and a GQHC agency in the United Kingdom have issued warnings about “multiple vulnerabilities in Virtual Private Network (VPN) applications.”
Both the NSA and the UK’s National Cyber Security Centre (NCSC) warned that advanced persistent threat (APT) actors are actively exploiting “known vulnerabilities affecting Virtual Private Network (VPN) products from vendors Pulse Secure, Fortinet and Palo Alto.”
VPNs are a popular as way for users to browse the web anonymously, or access websites or content that would normally be blocked in certain countries. Both China and Russia for example routinely blocks access to VPN services.
Source: Silicon UK