MARK HEIER

Duy,

I agree with your statement that no system/device can be 100% threat proof but there are many things that we can do to help mitigate most of these vulnerabilities. Staying up to date with the most current patches and incorporating recommended best practices will certainly help. We are challenged with this task which is an ongoing issue…[Read more]

Frederic,

Great post. This unfortunately was an attack that could have been prevented or at the very least mitigated to reduce the overall impact that was seen. Having default passwords in place as you pointed out is almost like an invitation for the adversary to exploit them. I also loved your mention of properly securing incoming connections…[Read more]

Satwika,

I like the fact that you opened with the fact that we are dealing with a lot of not so well educated end users utilizing these types of products. Hopefully as we move forward with this challenge we can raise awareness and learn from this unfortunate and mostly preventable incident. I also liked that you suggest as a mitigating factor…[Read more]

Sev,

I like the fact that you are suggesting somewhat of a defense in depth concept here. Sure the first thing that could have helped prevent this was changing the default passwords. I think it’s a good recommendation for the vendors to incorporate this practice during the initial set up process. By incorporating these simple procedures as you…[Read more]

Pat,

By forcing the users to change their default passwords during the initial login it will certainly make the systems more difficult to breach. I really liked your idea to have a rule programmed in place that requires users to install patches as they’re available and for the device to disconnect at a set point if it’s not updated. This would…[Read more]

Fraser,

I liked how you mentioned that in the future we can expect that people will still be using whatever their ISP gives them. You’re correct in the regard that they can do a few things alright but nothing really good. The key as you recommended is a better baseline which can hopefully zone in a little more on the security perspective as we…[Read more]

Richard,

As you pointed out, this technology is being released at an alarming rate. It is difficult enough trying to keep up with the current technology in terms of mitigating the vulnerabilities as they appear let alone maintaining pace with the new ones as they hit the streets. Couple that with the fact that security is often an after thought…[Read more]

Richard,

As you pointed out, this technology is being released at an alarming rate. It is difficult enough trying to keep up with the current technology in terms of mitigating the vulnerabilities as they appear let alone maintaining pace with the new ones as they hit the streets. Couple that with the fact that security is often an after thought…[Read more]

Fraser,

I liked how you mentioned that in the future we can expect that people will still be using whatever their ISP gives them. You’re correct in the regard that they can do a few things alright but nothing really good. The key as you recommended is a better baseline which can hopefully zone in a little more on the security perspective as we…[Read more]

Pat,

By forcing the users to change their default passwords during the initial login it will certainly make the systems more difficult to breach. I really liked your idea to have a rule programmed in place that requires users to install patches as they’re available and for the device to disconnect at a set point if it’s not updated. This would…[Read more]

Duy,

I agree with your statement that no system/device can be 100% threat proof but there are many things that we can do to help mitigate most of these vulnerabilities. Staying up to date with the most current patches and incorporating recommended best practices will certainly help. We are challenged with this task which is an ongoing issue…[Read more]

Frederic,

Great post. This unfortunately was an attack that could have been prevented or at the very least mitigated to reduce the overall impact that was seen. Having default passwords in place as you pointed out is almost like an invitation for the adversary to exploit them. I also loved your mention of properly securing incoming connections…[Read more]

Satwika,

I like the fact that you opened with the fact that we are dealing with a lot of not so well educated end users utilizing these types of products. Hopefully as we move forward with this challenge we can raise awareness and learn from this unfortunate and mostly preventable incident. I also liked that you suggest as a mitigating factor…[Read more]

Sev,

I like the fact that you are suggesting somewhat of a defense in depth concept here. Sure the first thing that could have helped prevent this was changing the default passwords. I think it’s a good recommendation for the vendors to incorporate this practice during the initial set up process. By incorporating these simple procedures as you…[Read more]