{"id":14615,"date":"2025-08-13T17:36:52","date_gmt":"2025-08-13T17:36:52","guid":{"rendered":"https:\/\/newestek.com\/?p=14615"},"modified":"2025-08-13T17:36:52","modified_gmt":"2025-08-13T17:36:52","slug":"def-con-research-takes-aim-at-ztna-calls-it-a-bust","status":"publish","type":"post","link":"https:\/\/newestek.com\/?p=14615","title":{"rendered":"DEF CON research takes aim at ZTNA, calls it a bust"},"content":{"rendered":"<div>\n<div id=\"remove_no_follow\">\n<div class=\"grid grid--cols-10@md grid--cols-8@lg article-column\">\n<div class=\"col-12 col-10@md col-6@lg col-start-3@lg\">\n<div class=\"article-column__content\">\n<section class=\"wp-block-bigbite-multi-title\">\n<div class=\"container\"><\/div>\n<\/section>\n<p>Zero Trust Network Access (ZTNA) has been promoted by vendors over the last several years as a foundational approach for network security. The basic premise is to never trust and always verify.<\/p>\n<p>While the core ideas behind ZTNA are valid, this multi-billion dollar market faced a brutal assessment at\u00a0<a href=\"https:\/\/defcon.org\/\">DEF CON 2025<\/a>\u00a0when UK security researchers from\u00a0<a href=\"https:\/\/www.amberwolf.com\/\">AmberWolf<\/a>\u00a0demonstrated severe vulnerabilities across three major ZTNA vendors.<\/p>\n<p>The research team found complete authentication bypasses in all tested platforms. Check Point\u2019s Harmony SASE contained hard-coded encryption keys that exposed customer data through diagnostic logs. Zscaler\u2019s SAML implementation failed to validate signatures, allowing attackers to forge authentication tokens. Netskope suffered from cross-tenant vulnerabilities that let attackers compromise any organization using leaked enrollment tokens.<\/p>\n<p><a href=\"https:\/\/www.networkworld.com\/article\/4039042\/def-con-research-takes-aim-at-ztna-calls-it-a-bust.html\">Continue reading on Network World.<\/a><\/p>\n<\/div>\n<\/div>\n<\/div>\n<\/div>\n<\/div>\n","protected":false},"excerpt":{"rendered":"<p>Zero Trust Network Access (ZTNA) has been promoted by vendors over the last several years as a foundational approach for network security. The basic premise is to never trust and always verify. While the core ideas behind ZTNA are valid, this multi-billion dollar market faced a brutal assessment at\u00a0DEF CON 2025\u00a0when UK security researchers from\u00a0AmberWolf\u00a0demonstrated severe vulnerabilities across three major ZTNA vendors. The research team&#8230; <\/p>\n<p class=\"more\"><a class=\"more-link\" href=\"https:\/\/newestek.com\/?p=14615\">Read More<\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"inline_featured_image":false,"footnotes":""},"categories":[1],"tags":[],"class_list":["post-14615","post","type-post","status-publish","format-standard","hentry","category-uncategorized","is-cat-link-borders-light is-cat-link-rounded"],"_links":{"self":[{"href":"https:\/\/newestek.com\/index.php?rest_route=\/wp\/v2\/posts\/14615","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/newestek.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/newestek.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/newestek.com\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/newestek.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=14615"}],"version-history":[{"count":0,"href":"https:\/\/newestek.com\/index.php?rest_route=\/wp\/v2\/posts\/14615\/revisions"}],"wp:attachment":[{"href":"https:\/\/newestek.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=14615"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/newestek.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=14615"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/newestek.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=14615"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}