With most companies forced to transition to remote work, even employees far removed from IT are now actively relying on VPN gateways to secure interactions with co-workers, partners, and clients. That kind of change was hardly going to evade the notice of cybercriminals, who have responded by increasing the pace of their searches for exploitable vulnerabilities in network devices and software.
The US Cybersecurity and Infrastructure Security Agency (CISA) has documented a number of attacks through vulnerabilities in VPN gateways. Several government organizations and private companies were attacked through two known vulnerabilities: one (known as Zerologon) in Windows and one in a popular VPN server.
