> Steps to protect edge devices from brute-forcing attacks include changing the default admin password to a strong and unique one, enforcing multi-factor authentication (MFA), using an allowlist of trusted IPs, and disabling web admin interfaces if they're not needed.

Yeah, MFA is probably the best of the alternatives, especially if you can get it to go to your phone. If you haven’t disabled or changed your web admin password and login, you can do that immediately without waiting for anyone else. Just follow the handy-dandy directions in your device’s handbook or online owner’s manual.. Cutting attacks on VPN helps everyone, especially those in prison states.

Rothbardian_fanatic

security

A large-scale brute force password attack using almost 2.8 million IP addresses is underway, attempting to guess the credentials for a wide range of networking devices, including those from Palo Alto Networks, Ivanti, and SonicWall.