Re: Wrong culprit identified
Sure, but note the breach point: a Juniper firewall. A quick search shows Juniper was not done updating their Heartbleed vulnerability advisories until April 30th. The patch advisory updates ran until May 6th. That falls right in the middle of the attack window. Without knowing the exact model, one can't say when the vulnerability was disclosed and when the patch was available.
Biting the hand that feeds IT
