Security History: Barracuda Gear Is a Security Breach
-
This comes up from time to time and this massive breach by a vendor posing as a security vendor predated the ML community and, as is generally the case, memories in IT (or anything) tend to be very, very short lived. But in 2013, Barracuda, a vendor famous for making "security" gear like SPAM filtering, firewalls, and VPN appliances, got caught having put a secret backdoor into all of this gear making their gear actually an intentional attack vector on Barracuda clients. The vendor paid and trusted to secure customers was actually actively exposing them.
Barracuda tried to claim that the backdoor was only exposed to Barracuda itself, still a very bad scenario if that were true, but this proved to be false and actually the expose was massively larger. Not only was there a backdoor, but it also used a super simple username (just "product") and no password, whatsoever. So not only was it a backdoor, but it is a publicly known backdoor that was completely lacking even the most basic security mechanism of a password! The database running on these devices was also completely without security and fully accessible just by accessing the device.
So this is a case of not only a vendor claiming to be a security vendor not knowing even the most basic means of security, and not only a security vendor lying to their customers to try to trick them into thinking a total exposure wasn't all that bad, but also the very vendor relied upon to provide security using that trust to open its own customers to the world in the most dramatic fashion.
-
I also don't appreciate SonicWall's backdoor. I've gone through a few instances of over-the-air updates bricking appliances or causing crazy performance issues with constant CPU spiking.
-
@bbigford said in Security History: Barracuda Gear Is a Security Breach:
I also don't appreciate SonicWall's backdoor. I've gone through a few instances of over-the-air updates bricking appliances or causing crazy performance issues with constant CPU spiking.
I dislike all back doors. But is SonicWall's open to the public? Or is it at least just a back door for them? Still not good, but an order of magnitude or a few better.
-
@scottalanmiller said in Security History: Barracuda Gear Is a Security Breach:
@bbigford said in Security History: Barracuda Gear Is a Security Breach:
I also don't appreciate SonicWall's backdoor. I've gone through a few instances of over-the-air updates bricking appliances or causing crazy performance issues with constant CPU spiking.
I dislike all back doors. But is SonicWall's open to the public? Or is it at least just a back door for them? Still not good, but an order of magnitude or a few better.
Of course they'll say it's only open to them, but that's what Barracuda says too...
-
@bbigford said in Security History: Barracuda Gear Is a Security Breach:
@scottalanmiller said in Security History: Barracuda Gear Is a Security Breach:
@bbigford said in Security History: Barracuda Gear Is a Security Breach:
I also don't appreciate SonicWall's backdoor. I've gone through a few instances of over-the-air updates bricking appliances or causing crazy performance issues with constant CPU spiking.
I dislike all back doors. But is SonicWall's open to the public? Or is it at least just a back door for them? Still not good, but an order of magnitude or a few better.
Of course they'll say it's only open to them, but that's what Barracuda says too...
But Barracdua was proven wrong.
-
@bbigford said in Security History: Barracuda Gear Is a Security Breach:
@scottalanmiller said in Security History: Barracuda Gear Is a Security Breach:
@bbigford said in Security History: Barracuda Gear Is a Security Breach:
I also don't appreciate SonicWall's backdoor. I've gone through a few instances of over-the-air updates bricking appliances or causing crazy performance issues with constant CPU spiking.
I dislike all back doors. But is SonicWall's open to the public? Or is it at least just a back door for them? Still not good, but an order of magnitude or a few better.
Of course they'll say it's only open to them, but that's what Barracuda says too...
It's often pretty easy to test. At least for something in the degree of Barracuda's, it was WIDE open, no security whatsoever.
-
@bbigford said in Security History: Barracuda Gear Is a Security Breach:
I also don't appreciate SonicWall's backdoor. I've gone through a few instances of over-the-air updates bricking appliances or causing crazy performance issues with constant CPU spiking.
Sonicwall Backdoor is on GMS which is a pretty hefty price to manage Sonicwalls.
https://borncity.com/win/2016/07/21/vulnerabilities-and-backdoors-in-dells-sonicwall/The Crazy performance issue is due to the Sonicwall hardware specs and what they claim the Sonicwall to be able to handle do not mach. Say a TZ 215 with 2x 500 MHz CPU and 512 MB RAM and you enable Application Control with Logging, it will make your Sonicwall run so bad that you will barely get over 15 Mbps. Because the processing of logs alone choke the CPU.
-
@scottalanmiller said in Security History: Barracuda Gear Is a Security Breach:
@bbigford said in Security History: Barracuda Gear Is a Security Breach:
@scottalanmiller said in Security History: Barracuda Gear Is a Security Breach:
@bbigford said in Security History: Barracuda Gear Is a Security Breach:
I also don't appreciate SonicWall's backdoor. I've gone through a few instances of over-the-air updates bricking appliances or causing crazy performance issues with constant CPU spiking.
I dislike all back doors. But is SonicWall's open to the public? Or is it at least just a back door for them? Still not good, but an order of magnitude or a few better.
Of course they'll say it's only open to them, but that's what Barracuda says too...
It's often pretty easy to test. At least for something in the degree of Barracuda's, it was WIDE open, no security whatsoever.
Not sure if it was only open to them in case of Sonicwall.
