The National Security Agency (NSA) and CISA have released the cybersecurity information sheet “Selecting and Hardening Standards-Based Remote Access VPN Solutions” to address the potential security risks associated with using virtual private networks (VPNs). Remote-access VPN servers allow off-site users to tunnel into protected networks, making these entry points vulnerable to exploitation by malicious cyber actors.
