WatchGuard published a new security vulnerability on December 18, 2025, which you absolutely must be aware of:
WatchGuard Firebox iked Out of Bounds Write Vulnerability (CVE-2025-14773)(WGSA-2025-00027) CVSS 9.3
WatchGuard Idea Portal
WatchGuard hat in der Cloud Oberfläche (https://cloud.watchguard.com) ein cooles, neues Feature veröffentlicht. Das Feature nennt sich Idea Portal: Das Idea Portal ist nach den Produktgruppen von WatchGuard unterteilt: In jeder Produktgruppe gibt es dabei verschiedene Sektionen: Gathering FeedbackOn RoadmapIn ProgressDelivered In jeder Sektion sind einzelne Features von der Idee bis…
Swisscom Centro Business: Incoming HTTPS-Sessions and SSLVPN stop working
In the last two weeks we have received many support requests because of non-functioning SSL connections from our Fortinet, Palo Alto Networks and Watchguard customers. Incoming SSL connections on port tcp/443 suddenly stop working. These can be SSLVPNs, Global Protect connections, port forwardings (VIPs, Destination NAT) for internal web servers…
WatchGuard Launches PSIRT Page
WatchGuard’s Product Security Incident Response Team (PSIRT) has launched their public PSIRT page to provide a consolidated resource where network administrators can find advisories and information about security vulnerabilities in WatchGuard products, as well as WatchGuard’s investigations into industry-wide security issues that may impact WatchGuard products or services. The published…
WatchGuard Firewalls: Cyclops Blink Botnet (English Version)
According to current information, a limited number (~1%) of WatchGuard firewalls have been infected by a state-sponsored botnet called Cyclops Blink. Although there is currently no evidence of data exfiltration, it is possible that data from the firewalls has been compromised.
WatchGuard Firewalls: Cyclops Blink Botnet Befall (Deutsche Version)
Gemäss aktuellen Informationen sind eine begrenzte Anzahl (~1%) von WatchGuard Firewalls von einem staatlich gesponserten Botnet namens “Cyclops Blink” befallen worden. Obwohl es derzeit keine Beweise für eine Datenexfiltration gibt, ist es möglich, dass Daten der Firewalls kompromittiert wurden.
WatchGuard announced new “Service Status Page”
Today WatchGuard launched a new page where you can see the status of WatchGuard Cloud Services. https://status.watchguard.com/ For each region, you’ll find the current status separated by products and the major features that WatchGuard provides. Every line has a simple status indicator to communicate its condition:
Windows update breaks SSO event log readers (FSSO, PAN UIA, WG ELM)
Microsoft has released KB5003646 on the 6th of June 2021. Part of this update is a security hardening measurement to align with recommendations as a conclusion out of CVE-2021-31958. As a known issue of this KB5003646, microsoft has noted in the release notes: “After installing this or later updates, apps…
Exchange Pwn2Own Vulnerability April 2021 (Yes, a new one – it’s not Hafnium anymore!)
Let’s mention the important things first: Please patch you vulnerable Exchange 2013, 2016 and 2019 immediately! The page msxfaq has published an infosite to this vulnerability including the instructions how to fix your Exchange. Some security researchers have demonstrated three high risk vulnerabilities for exchange server systems. Microsoft has published…
Exchange Hafnium Vulnerability March 2021
Let’s mention the important things first: Please patch you vulnerable Exchange 2013, 2016 and 2019 immediately! The page msxfaq has published an infosite to this vulnerability including the instructions how to fix your Exchange. Even though we, as Boll Engineering AG, are not associated in any way with the affected…
