Cisco.com Breached
#156 Showing that it happens to the best of us, Cisco Systems' customers received e-mails Wednesday from the networking company advising them of a security breach of its Web site. The company said Cisco.com has been compromised and that customers needed to change their passwords.
Cisco probably has oodles of security gear protecting its web site and it's more likely to be a vulnerability in Web applications than Cisco equipment. This just goes to show how application level (port 80) vulnerabilities and web security has still got a way to go.
Some commentators suggest that the hack was a result of Cisco being targeted by hackers in the wake of the Ciscogate affair, however this is just pure speculation at this time. The point is Web applications are vulnerable and if you conduct e-commerce or collect sensitive information from your web sites, you must take a closer look at its security , beyond just the Firewalls, Antivirus, IDS's and IPS's you have installed on the network.
If it can happen to Cisco it can happen to anyone.
Cisco probably has oodles of security gear protecting its web site and it's more likely to be a vulnerability in Web applications than Cisco equipment. This just goes to show how application level (port 80) vulnerabilities and web security has still got a way to go.
Some commentators suggest that the hack was a result of Cisco being targeted by hackers in the wake of the Ciscogate affair, however this is just pure speculation at this time. The point is Web applications are vulnerable and if you conduct e-commerce or collect sensitive information from your web sites, you must take a closer look at its security , beyond just the Firewalls, Antivirus, IDS's and IPS's you have installed on the network.
If it can happen to Cisco it can happen to anyone.
1 Comments:
Thanks Dwaine for mentioning two of my blog postings in this posting.
It really is quite sad how corporations can treat folks who are only trying to help the corporation's own customers.
Post a Comment
<< Home