ML
    • Recent
    • Categories
    • Tags
    • Popular
    • Users
    • Groups
    • Register
    • Login

    Security History: Barracuda Gear Is a Security Breach

    News
    barracda security backdoor krebs on security
    5
    8
    950
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • mlnewsM
      mlnews
      last edited by

      This comes up from time to time and this massive breach by a vendor posing as a security vendor predated the ML community and, as is generally the case, memories in IT (or anything) tend to be very, very short lived. But in 2013, Barracuda, a vendor famous for making "security" gear like SPAM filtering, firewalls, and VPN appliances, got caught having put a secret backdoor into all of this gear making their gear actually an intentional attack vector on Barracuda clients. The vendor paid and trusted to secure customers was actually actively exposing them.

      Barracuda tried to claim that the backdoor was only exposed to Barracuda itself, still a very bad scenario if that were true, but this proved to be false and actually the expose was massively larger. Not only was there a backdoor, but it also used a super simple username (just "product") and no password, whatsoever. So not only was it a backdoor, but it is a publicly known backdoor that was completely lacking even the most basic security mechanism of a password! The database running on these devices was also completely without security and fully accessible just by accessing the device.

      So this is a case of not only a vendor claiming to be a security vendor not knowing even the most basic means of security, and not only a security vendor lying to their customers to try to trick them into thinking a total exposure wasn't all that bad, but also the very vendor relied upon to provide security using that trust to open its own customers to the world in the most dramatic fashion.

      1 Reply Last reply Reply Quote 2
      • bbigfordB
        bbigford
        last edited by

        I also don't appreciate SonicWall's backdoor. I've gone through a few instances of over-the-air updates bricking appliances or causing crazy performance issues with constant CPU spiking.

        scottalanmillerS dbeatoD 2 Replies Last reply Reply Quote 1
        • scottalanmillerS
          scottalanmiller @bbigford
          last edited by

          @bbigford said in Security History: Barracuda Gear Is a Security Breach:

          I also don't appreciate SonicWall's backdoor. I've gone through a few instances of over-the-air updates bricking appliances or causing crazy performance issues with constant CPU spiking.

          I dislike all back doors. But is SonicWall's open to the public? Or is it at least just a back door for them? Still not good, but an order of magnitude or a few better.

          bbigfordB 1 Reply Last reply Reply Quote 0
          • bbigfordB
            bbigford @scottalanmiller
            last edited by

            @scottalanmiller said in Security History: Barracuda Gear Is a Security Breach:

            @bbigford said in Security History: Barracuda Gear Is a Security Breach:

            I also don't appreciate SonicWall's backdoor. I've gone through a few instances of over-the-air updates bricking appliances or causing crazy performance issues with constant CPU spiking.

            I dislike all back doors. But is SonicWall's open to the public? Or is it at least just a back door for them? Still not good, but an order of magnitude or a few better.

            Of course they'll say it's only open to them, but that's what Barracuda says too...

            JaredBuschJ scottalanmillerS 2 Replies Last reply Reply Quote 0
            • JaredBuschJ
              JaredBusch @bbigford
              last edited by

              @bbigford said in Security History: Barracuda Gear Is a Security Breach:

              @scottalanmiller said in Security History: Barracuda Gear Is a Security Breach:

              @bbigford said in Security History: Barracuda Gear Is a Security Breach:

              I also don't appreciate SonicWall's backdoor. I've gone through a few instances of over-the-air updates bricking appliances or causing crazy performance issues with constant CPU spiking.

              I dislike all back doors. But is SonicWall's open to the public? Or is it at least just a back door for them? Still not good, but an order of magnitude or a few better.

              Of course they'll say it's only open to them, but that's what Barracuda says too...

              But Barracdua was proven wrong.

              1 Reply Last reply Reply Quote 2
              • scottalanmillerS
                scottalanmiller @bbigford
                last edited by

                @bbigford said in Security History: Barracuda Gear Is a Security Breach:

                @scottalanmiller said in Security History: Barracuda Gear Is a Security Breach:

                @bbigford said in Security History: Barracuda Gear Is a Security Breach:

                I also don't appreciate SonicWall's backdoor. I've gone through a few instances of over-the-air updates bricking appliances or causing crazy performance issues with constant CPU spiking.

                I dislike all back doors. But is SonicWall's open to the public? Or is it at least just a back door for them? Still not good, but an order of magnitude or a few better.

                Of course they'll say it's only open to them, but that's what Barracuda says too...

                It's often pretty easy to test. At least for something in the degree of Barracuda's, it was WIDE open, no security whatsoever.

                dbeatoD 1 Reply Last reply Reply Quote 1
                • dbeatoD
                  dbeato @bbigford
                  last edited by

                  @bbigford said in Security History: Barracuda Gear Is a Security Breach:

                  I also don't appreciate SonicWall's backdoor. I've gone through a few instances of over-the-air updates bricking appliances or causing crazy performance issues with constant CPU spiking.

                  Sonicwall Backdoor is on GMS which is a pretty hefty price to manage Sonicwalls.
                  https://borncity.com/win/2016/07/21/vulnerabilities-and-backdoors-in-dells-sonicwall/

                  The Crazy performance issue is due to the Sonicwall hardware specs and what they claim the Sonicwall to be able to handle do not mach. Say a TZ 215 with 2x 500 MHz CPU and 512 MB RAM and you enable Application Control with Logging, it will make your Sonicwall run so bad that you will barely get over 15 Mbps. Because the processing of logs alone choke the CPU.

                  1 Reply Last reply Reply Quote 0
                  • dbeatoD
                    dbeato @scottalanmiller
                    last edited by

                    @scottalanmiller said in Security History: Barracuda Gear Is a Security Breach:

                    @bbigford said in Security History: Barracuda Gear Is a Security Breach:

                    @scottalanmiller said in Security History: Barracuda Gear Is a Security Breach:

                    @bbigford said in Security History: Barracuda Gear Is a Security Breach:

                    I also don't appreciate SonicWall's backdoor. I've gone through a few instances of over-the-air updates bricking appliances or causing crazy performance issues with constant CPU spiking.

                    I dislike all back doors. But is SonicWall's open to the public? Or is it at least just a back door for them? Still not good, but an order of magnitude or a few better.

                    Of course they'll say it's only open to them, but that's what Barracuda says too...

                    It's often pretty easy to test. At least for something in the degree of Barracuda's, it was WIDE open, no security whatsoever.

                    Not sure if it was only open to them in case of Sonicwall.

                    1 Reply Last reply Reply Quote 0
                    • 1 / 1
                    • First post
                      Last post