Recently, by growing remote clients, Cisco AnyConnect VPNs have become more important. For millions around the world, working from home is a new norm for the foreseeable future causing organizations to quickly spin up and scale out VPNs to meet the high demand to the new remote workforce. With VPNs being one of the most obvious entry points inside our network, a poorly designed VPN rollout can have catastrophic implications.
2019 was a bad year for VPN vendors. Some of the biggest firewall and VPN vendors were played by vulnerabilities throughout the year. leading CISA to release several advisories of the vulnerable products and the impact to enterprises. In fact, the NSA and UK’s National Cyber Security Center reported that APT groups have been exploiting these disclosed vulnerabilities throughout the year.
As one of the technology leaders, Cisco AnyConnect counts as a reliable solution for clients to implement safe and reliable solution for site-to-site VPN and remote users access.
VPN Servers and Clients
Due to the severity of these advisories, make sure your VPN appliance and endpoints software is not affected by any of the CVEs or CISA advisories. If it is, prioritize patching those systems as soon as possible that means both the VPN appliance and endpoints that they use to connect as well which both could have been affected depending on the vendor. Also, automated scanning BOTs can quickly sniff out and easily detect these vulnerable systems to be exploited later. In fact, that packet report showed a massive uptick in scanning for these vulnerabilities towards the end of 2019 and well into 2020.