|Backdoors embedded in Juniper Firewalls|
|By Thom Holwerda, submitted by Alfman on 2015-12-21 22:27:13|
On Thursday, tech giant Juniper Networks revealed in a startling announcement that it had found "unauthorized" code embedded in an operating system running on some of its firewalls.
The code, which appears to have been in multiple versions of the company's ScreenOS software going back to at least August 2012, would have allowed attackers to take complete control of Juniper NetScreen firewalls running the affected software. It also would allow attackers, if they had ample resources and skills, to separately decrypt encrypted traffic running through the Virtual Private Network, or VPN, on the firewalls.
The security community is particularly alarmed because at least one of the backdoors appears to be the work of a sophisticated nation-state attacker.
Merry Christmas, everybody.
- How China used a tiny chip to infiltrate US companies - 2018-10-04
- Lenovo: Companies working in China install local backdoors - 2018-09-19
- Dozens of iOS, Android apps secretly share location data - 2018-09-10
- US, others ask companies to build backdoors into encryption - 2018-09-06
- More related articles