NAT Slipstreaming v2.0: New Attack Variant Can Expose All Internal Network Devices to The Internet

The new attack variant can allow attackers to reach any device within the internal network and simply requires a victim to click on a malicious link.
Impact of attack on unmanaged devices can be severe, ranging from a nuisance to full-blown ransomware attack.
Enterprise-grade NATs/firewalls from Fortinet, Cisco and HPE are confirmed to be affected, while others are likely affected as well
The collaboration resulted in a security disclosure with browser vendors to mitigate the attack
Google, Apple, Mozilla and Microsoft have released patches to Chrome, Safari, Firefox and Edge, that mitigate the new variant

Comments