Netscreens: backdoor discovered

Started by wintermute000, December 18, 2015, 04:14:12 AM

Previous topic - Next topic


deanwebb

Yep. I've already passed that alert on up my command chain. I expect an upgrade sometime next week, probably on Christmas Day, when everything's turned off.
Take a baseball bat and trash all the routers, shout out "IT'S A NETWORK PROBLEM NOW, SUCKERS!" and then peel out of the parking lot in your Ferrari.
"The world could perish if people only worked on things that were easy to handle." -- Vladimir Savchenko
Вопросы есть? Вопросов нет! | BCEB: Belkin Certified Expert Baffler | "Plan B is Plan A with an element of panic." -- John Clarke
Accounting is architecture, remember that!
Air gaps are high-latency Internet connections.


deanwebb

Quote from: wintermute000 on December 20, 2015, 04:57:00 AM
It gets better. The patch reveals another backdoor (not FEEDTHROUGH)

http://www.wired.com/2015/12/juniper-networks-hidden-backdoors-show-the-risk-of-government-backdoors/



Prins says the larger concern now is whether other firewall manufacturers have been compromised in a similar manner. "I hope that other vendors like Cisco and Checkpoint are also now starting a process to review their code to see if they have backdoors inserted," he said.

:jackie-chan:

They DAMN SURE better be starting that review process, and with all speed... My guess is if they're not able to patch it - and this could be due to other government entanglements - then they'll say nothing or dismiss it like, "That was Juniper's problem, not ours."

But if they can patch it, it may be because they're working with the same actors that introduced the first backdoor and that the patch takes care of everything the vulnerability researchers are going to be looking for... and then, another patch comes out later on with a different sort of backdoor, designed to evade current testing methods.

:notthefirewall:
Take a baseball bat and trash all the routers, shout out "IT'S A NETWORK PROBLEM NOW, SUCKERS!" and then peel out of the parking lot in your Ferrari.
"The world could perish if people only worked on things that were easy to handle." -- Vladimir Savchenko
Вопросы есть? Вопросов нет! | BCEB: Belkin Certified Expert Baffler | "Plan B is Plan A with an element of panic." -- John Clarke
Accounting is architecture, remember that!
Air gaps are high-latency Internet connections.


deanwebb

Waiting for the major financial firm to announce it got hacked that way in 3... 2...
Take a baseball bat and trash all the routers, shout out "IT'S A NETWORK PROBLEM NOW, SUCKERS!" and then peel out of the parking lot in your Ferrari.
"The world could perish if people only worked on things that were easy to handle." -- Vladimir Savchenko
Вопросы есть? Вопросов нет! | BCEB: Belkin Certified Expert Baffler | "Plan B is Plan A with an element of panic." -- John Clarke
Accounting is architecture, remember that!
Air gaps are high-latency Internet connections.

SimonV

No doubt, just look at the amount of devices Shodan has indexed:

https://www.shodan.io/search?query=netscreen