Zyxel (Multiple Products) Data Breach
Zyxel (Multiple Products) experienced a data breach that was reported on November 3, 2021. Zyxel firewalls (ATP, USG, VM) and AP Controllers (NXC2500 and NXC5500) contain a use of hard-coded credentials vulnerability in an undocumented account ("zyfwp") with an unchangeable password.
Key Facts
- Organization
- Zyxel (Multiple Products)
- Date Reported
- November 3, 2021
- Incident Type
- unknown
- Industry
- Technology
- Severity Score
- 5/10
- Confidence Level
- high
Source
View original source - External link to primary source documentation
Understanding unknown Incidents
Data breaches can result in significant financial, operational, and reputational damage. Organizations should implement defense-in-depth strategies and maintain incident response capabilities.