Cisco Finds Critical Vulnerability In WikiLeaks Docs

Status
Not open for further replies.

WFang

Reputable
Dec 10, 2014
130
0
4,680
0
Well, the information was public already, so them not finding and admitting to it could well be considered neglect by investors and customers. Keep in mind, anyone (with the proper resources and background) could have combed the same document leak and come up with the same approach.

If anything, their public confirmation is a smart move both towards existing customers (notifying them about a known flaw) and towards investors. Both are at this point some degree of damage control.

(Removed one word for clarity.)
 

eriko

Distinguished
Mar 12, 2008
212
0
18,690
1
@ TheViper

And SSH VERSION 2 at that.

I was battling Chinese hackers I couldn't keep out of my infrastructure for weeeeeeeks.

I did not notice that I was on SSH v1, which is known to be compromised.

So I generated new crypto keys, and set SSH v2, and that was that, they have not been in since. I also added an ACL entries for about 100 IPs that were involved in it too, all one by one, dog dammit, and a simple VTY-allowed list for me.

I see them denied in my logs every few mins or so. Less and less often too. Seems they are close to giving up.

I never once heard back from a single Chinese ISP regarding these attacks.
 
Status
Not open for further replies.

ASK THE COMMUNITY