back to article Can a script kiddie pwn your SD-WAN? Better check the config, friend

Russian researchers armed with Shodan and Censys have identified nearly 5,000 SD-WANs with vulnerable management interfaces. It won't surprise anyone, The Register suspects, that most of the problems the three researchers (Denis Kolegov and Antony Nikolaev of Tomsk State University, and DarkMatter's Sergey Gordeychik) …

  1. Dr Who

    Not really an SD-WAN issue

    You will almost certainly find that most of the routers, firewalls etc... in the world are missing crucial software updates. It's a network admin issue not an SD-WAN issue.

  2. Anonymous Coward
    Anonymous Coward

    It is if your SD-WAN appliance du choix is based on an horrifically out of date linux distro and the vendor patches are few and far between. Remember, these management interfaces are not supposed to be exposed to the Internet (generally), so the vendor line may well be that fixing vulnerabilities for an unsupported deployment is not a priority.

    1. JohnFen

      It's still an admin issue if the admin(s) in question haven't been raising holy hell about replacing that equipment with something that is better supported. If they have, but the company is unwilling to engage in such maintenance, then it's a management issue.

  3. Detective Emil
    Headmaster

    Please, sir!

    What's an SD-WAN?

    1. JohnFen

      Re: Please, sir!

      Software Defined Wide Area Networking: https://en.wikipedia.org/wiki/SD-WAN

    2. David Roberts
      Trollface

      Re: Please, sir!

      SD-WAN is an updated verdion of the traditional OB-WAN.

      Which sometimes is your only hope.

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Biting the hand that feeds IT © 1998–2022