Thread replies: 30
Thread images: 3
Thread images: 3
Anonymous
It's habeebening :---DDDDD 2016-08-21 19:25:18 Post No. 56197183
[Report] Image search: [Google]
It's habeebening :---DDDDD 2016-08-21 19:25:18 Post No. 56197183
[Report] Image search: [Google]
File: Screenshot from 2016-08-21 20-20-50.png (328KB, 705x536px) Image search:
[Google]
328KB, 705x536px
> Cisco has already warned customers about two exploits found in the NSA-linked data recently dumped by hackers calling themselves The Shadow Brokers. Now, researchers have uncovered another attack included in the cache, which they claim allows the extraction of VPN passwords from certain Cisco products—meaning hackers could snoop on encrypted traffic.
> Security researcher Mustafa Al-Bassam first documented the hacking tool, which uses the codename BENIGNCERTAIN, in a blog post published Thursday. He coined the attack “PixPocket” after the hardware the tool targets: Cisco PIX, a popular, albeit now outdated, firewall and VPN appliance. Corporations or government departments might use these devices to allow only authorised users onto their network.
> Based on his analysis of the code, Al-Bassam writes that the tool works by sending a packet to the target machine that makes it dump some of its memory. Included in that dump is the VPN’s authentication password, which is used to log into the device.
http://motherboard.vice.com/read/researcher-grabs-cisco-vpn-password-with-tool-from-nsa-dump
>>
File: shutitdown3.jpg (59KB, 300x477px) Image search:
[Google]
59KB, 300x477px
>>56197183
DELETE
>>
>NSA forces backdoors to be added to software
>backdoor leaks, anyone can use it
simply eric
>>
>>56197183
PIX is ancient.
It's still a big fucking deal, because quite frankly it's likely the NSA have other tools that can replicate the same shit on other, more modern devices. I don't doubt they built a framework to find remote memory read exploits.
There's also SECONDDATE, a tool that, used in conjunction with implants, allows for easy traffic injection.
>>
I hope it all burns.
>>
>>56197304
Best thing all this shit is the hard evidence of hardware being backdoored. I really hope cisco goes bankrupt. It will be a good example for other businesses like CPU manufacturers.
>>
Mustafa Al-Bassam aka lulzsec
>>
>>56197387
Nothing in those tools indicate Cisco has hardware backdoors in devices. If anything, it indicates the opposite.
It's interesting that they don't feel like patching the PIX vulnerability, but then it is a discontinued product.
>>
>>56197304
I've heard some anon saying that it's better to have a vpn in some god-forsaken country (because in-country you're kinda fucked for privacy), but doesn't that mean you're opening yourself to whatever ancientware the guys in Kyrgyzstan are running?
>>
So, is it worth gettting the Cisco certificates beyond CCNA?
>>
>>56197387
Nope, sorry.
As always, nobody will give a shit.
>>
>>56197413
VPNs aren't really designed for privacy or anonymity in the first place, and using them to try and accomplish that is a Sisyphean task.
Be aware of the limitations of the software you're using; IPSec is fucked, and SSL libraries are usually lumbering leviathans full of crypto implementation failures and bugs.
If you need anonymity, use Tor. If you need "privacy" on a hostile network, then a VPN (or SSH tunnels) is probably fine against someone running Firesheep or whatever MITM tool is in vogue right now.
>>
>>56197294
>implying that's what this is
>>
>>56197387
>NSA has to build cracking tools for hardware with backdoors
yeah, that totally adds up
>>
>>56197613
Welcome to today's /g/.
>>
File: laughing_desirable_mothers.jpg (427KB, 1300x1160px) Image search:
[Google]
427KB, 1300x1160px
>not using OpenBSD on SPARC machines
>>
>>56197967
>SPARC
im sorry but it's just not worth the wattage in many applications
>>
>>56198088
What's a better architecture, then? MIPS?
>>
>>56197967
>implying Theo's mentalist thinking has anything to do with real security.
When your "proof" of security revolves around not having many listening services, you're doing it wrong.
Install Hardened Gentoo.
>>
>>56197387
Cisco international sales have been declining steadily since the Snowden leaks
>>
>>56198140
lol, you are like a tech vegan
useless
>>
>>56197967
>>56198140
Are you guys just saying this shit, or are you legitimately using it? SPARC, MIPS, and PowerPC development is not very active. The distros which do support them, you still have to jump through hoops to get everything working properly because the one or two maintainers left don't have access to a wide variety of machines to test on. If you don't like x86, arm is the only other platform with legs.
>>
>>56198171
Replaced by Huawei, literally the Chinese Cisco. Even full of Cisco source code.
>>
>>56198088
>he doesn't steal electricity from his neighbor
>>
>Shadow Brokers
*steps out of the shadows*
>>
>Cisco PIX, a popular, albeit now outdated
that's an understatement
i guess if you want to hack factory and hospital equipment this could be cool
>>
>>56198088
>it's another "all SPARC systems are 16U octa-socket space heaters" episode
>>
>>56198295
*unsheathes katana*
*teleports behind you*
nothing personnel kid
>>
>>56198259
>not very active
What the fuck does that even mean? Embedded MIPS devices and PowerPC systems both have currently maintained mainstream distros that plenty of people are using just fine. SPARC has the *BSDs as well as Gentoo, plus illumos distributions which also enable you to use the very much actively maintained OpenCSW repos.
>b-but muh shovelware
Build it, dipshit. It's not hard.
>>
>>56198488
no the hardware is going nowhere
>muh bandwagon
ok
Thread posts: 30
Thread images: 3
Thread images: 3