Backdoor account discovered in more than 100,000 Zyxel firewalls, VPN gateways The username and password (zyfwp/PrOw!aN_fXp) were visible in one of the Zyxel firmware binaries. Image: ZyxelMore than 100,000 Zyxel firewalls, VPN gateways, and access point controllers contain a hardcoded admin-level backdoor account that can grant attackers root access to devices via either the SSH interface or the
![Backdoor account discovered in more than 100,000 Zyxel firewalls, VPN gateways](https://cdn-ak-scissors.b.st-hatena.com/image/square/c41e00bb2a9e2628d1f648b5279f3e6ea0f41f58/height=288;version=1;width=512/https%3A%2F%2Fwww.zdnet.com%2Fa%2Fimg%2Fresize%2F54b1cd48375889563fabcda8b5fc39a082195450%2F2021%2F01%2F02%2F73263a24-e87c-4c52-8b65-b274c9034c3f%2Fzyxelatp.jpg%3Fauto%3Dwebp%26fit%3Dcrop%26height%3D675%26width%3D1200)