{"id":17867,"date":"2020-08-04T06:00:00","date_gmt":"2020-08-04T10:00:00","guid":{"rendered":"https:\/\/blog.tmcnet.com\/blog\/rich-tehrani\/?p=17867"},"modified":"2022-10-14T18:26:39","modified_gmt":"2022-10-14T22:26:39","slug":"teleworking-cybersecurity-issues-discovered-on-cisco-microsoft-citrix-and-ibm-solutions","status":"publish","type":"post","link":"https:\/\/blog.tmcnet.com\/blog\/rich-tehrani\/security\/teleworking-cybersecurity-issues-discovered-on-cisco-microsoft-citrix-and-ibm-solutions.html","title":{"rendered":"Teleworking Cybersecurity Issues Discovered on Cisco, Microsoft, Citrix, and IBM Solutions"},"content":{"rendered":"\n<p>Cybersecurity leader <a href=\"https:\/\/blog.tmcnet.com\/blog\/rich-tehrani\/?s=RiskIQ\">RiskIQ<\/a> released its Vulnerability Landscape report, a high-level view of critical vulnerabilities in 12 widely used remote access and perimeter devices. The findings show that the rapidly increasing adoption of these devices amid the COVID-19 pandemic is expanding digital attack surfaces outside the corporate firewall at incredible speed\u2014and introducing a range of critical, rapidly proliferating vulnerabilities. Cybercriminals and nation-states are already taking advantage of these security flaws, including those in F5 Networks&#8217; BIG-IP product and Cisco&#8217;s IOS XE devices, to attack organizations.<\/p>\n\n\n\n<p>In the past, we have covered the company&#8217;s news regarding the proliferation of <a href=\"https:\/\/blog.tmcnet.com\/blog\/rich-tehrani\/security\/hackers-are-using-coronavirus-phishing-to-target-workers.html\">Covid-19 phishing<\/a> attacks as well as a report describing <a href=\"https:\/\/blog.tmcnet.com\/blog\/rich-tehrani\/security\/latest-mobile-threats-include-adware-tax-scams-fleeceware-and-black-friday-scams.html\">attacks coming from adware, fleeceware and tax scams<\/a>.<\/p>\n\n\n\n<p>Recently, organizations\nhave had to scramble to patch dangerous security flaws in dozens of remote\naccess and perimeter devices. Already, there have been 18 high-to-critical\nvulnerabilities in these systems in 2020. The devices covered in the report\ninclude Palo Alto Global Protect, F5 BIG-IP, IBM WebSphere Application Server,\nOracle WebLogic, Microsoft Remote Desktop Gateway, Citrix NetScaler Gateway,\nCitrix ADC, Cisco ASA &amp; Firepower, Oracle iPlanet Web Server, and more. <\/p>\n\n\n\n<p>The report taps the\ncompany&#8217;s <a href=\"https:\/\/www.riskiq.com\/blog\/external-threat-management\/internet-intelligence-graph\/\">Internet Intelligence Graph<\/a>, a global network that absorbs internet data to map the\nbillions of relationships between IP-connected devices worldwide. Researchers\ndeployed this telemetry to find the total number of these 12 potentially\nvulnerable devices online across the world that RiskIQ systems observed between\nJune 1, 2020, and today. <\/p>\n\n\n\n<p><strong>The total amount of potential vulnerabilities in the\nfindings include:<\/strong><\/p>\n\n\n\n<ul><li>Palo Alto Global Protect &#8211; 61,869<\/li><li>F5 Big-IP &#8211; 967,437<\/li><li>IBM WebSphere Application Server &#8211; 7,496<\/li><li>Oracle WebLogic &#8211; 14,563<\/li><li>Microsoft Remote Desktop Gateway &#8211; 42,826<\/li><li>Citrix NetScaler Gateway &#8211; 86,773<\/li><li>Citrix ADC &#8211; 7,970<\/li><li>Cisco ASA &amp; Firepower &#8211; 1,982<\/li><li>Oracle iPlanet Web Server 7.0 &#8211; 2,848<\/li><li>SAP NetWeaver &#8211; 2,629<\/li><li>Zoho Desktop Central &#8211; 1,988<\/li><li>Citrix ShareFile &#8211; 2,766<\/li><\/ul>\n\n\n\n<div class=\"wp-block-image\"><figure class=\"aligncenter\"><img decoding=\"async\" src=\"https:\/\/www.riskiq.com\/wp-content\/uploads\/2020\/05\/LManousos_profile_page.jpg\" alt=\"\"\/><figcaption>  Lou Manousos, RiskIQ\u2019s CEO <\/figcaption><\/figure><\/div>\n\n\n\n<p>&#8220;This data in this report gives us a unique glimpse of the new reality facing the enterprise in the post-COVID world, which is that network controls are coming up dangerously short,&#8221; said Lou Manousos, RiskIQ\u2019s CEO. &#8220;These IP-connected assets aren&#8217;t in the purview of most security controls, and dangerous flaws like those found in Cisco, Microsoft, Citrix, and IBM products will continue to be incredibly common.&#8221;<\/p>\n\n\n\n<p>Both the US and Australian governments have advised companies to immediately address these critical vulnerabilities, with <a href=\"https:\/\/twitter.com\/CNMF_CyberAlert\/status\/1279151966178902016\">US Cyber Command<\/a> recommending that organizations patch both the F5 and PAN-OS vulnerabilities<em>. B<\/em>oth the United States National Security Agency (NSA) and Australian Signals Directorate (ASD) have warned state-sponsored actors that leverage a broad swath of vulnerabilities to deploy <a href=\"https:\/\/en.wikipedia.org\/wiki\/Web_shell\">web shell malware<\/a> on vulnerable devices. By doing so, they gain a foothold into target organizations&#8217; networks.<\/p>\n\n\n\n<hr class=\"wp-block-separator\"\/>\n\n\n\n<p><strong>See the ONLY cybersecurity, Tech and Communications companies that\u00a0<a href=\"https:\/\/www.itexpo.com\/east\/exhibitor-list.aspx\">matter\u00a0<\/a>at the\u00a0<\/strong><a href=\"http:\/\/www.itexpo.com\/\"><strong>ITEXPO<\/strong><\/a><strong>\u00a0#TECHSUPERSHOW<\/strong>.<\/p>\n\n\n\n<blockquote class=\"wp-block-quote is-layout-flow wp-block-quote-is-layout-flow\"><p>This Event has been&nbsp;<a href=\"https:\/\/www.itexpo.com\/east\/testimonials.aspx\">called the&nbsp;<strong>BEST SHOW in 5 YEARS<\/strong>&nbsp;and the&nbsp;<strong>Best TECHNOLOGY EVENT of 2020<\/strong><\/a>.<\/p><\/blockquote>\n\n\n\n<p>2020 participants included: Amazon, Cisco, Google, IBM, ClearlyIP, Avaya, Vonage, 8\u00d78, Comcast Business, BlueJeans, CoreDial, Dell, Edify, Epygi, FreeSWITCH, Fuze, Grandstream, Granite,&nbsp;Intrado, Frontier Business, Fujitsu, Jenne, West, Konftel, Intelisys, Martello, NetSapiens, OOMA, Oracle, OpenVox, Peerless Network, Phone Sentry, Phone.com, Poly, QuestBlue, RingByName, Sangoma, SingTel, SkySwitch, Spracht, Spectrum, Sprint, Tallac, Tech Data, Telarus, TCG, Teledynamics, Teli, Telinta, Telispire, Telstra, TransNexus, Unified Office, Vital PBX, VoIP Supply, Voxbone, VoIP.MS, Windstream, XCALY, XORCOM, Yealink, Yubox, and ZYCOO.&nbsp;<a href=\"https:\/\/www.itexpo.com\/east\/exhibitor-list.aspx\"><strong>Full List.<\/strong><\/a><\/p>\n\n\n\n<p><strong>Join 8K others with $25B+ in IT buying power who plan 2021 budgets! Including 3,500+ resellers!<\/strong><\/p>\n\n\n\n<p>A unique experience with a collocated&nbsp;<a href=\"http:\/\/www.futureofworkexpo.com\/\">Future of Work Expo<\/a>,&nbsp;<a href=\"http:\/\/www.sdwanexpo.com\/\">SD-WAN Expo<\/a>,&nbsp;and&nbsp;<a href=\"http:\/\/www.mspexpo.com\/\">MSP Expo<\/a>\u2026<\/p>\n\n\n\n<p>June 22-25, 2021, Miami, FL.\u00a0<a href=\"https:\/\/www.itexpo.com\/east\/registration.aspx\">Register now<\/a>.<\/p>\n\n\n\n<figure class=\"wp-block-embed-youtube wp-block-embed is-type-video is-provider-youtube wp-embed-aspect-16-9 wp-has-aspect-ratio\"><div class=\"wp-block-embed__wrapper\">\n<iframe loading=\"lazy\" title=\"ITEXPO 2020 Intro 2\" width=\"500\" height=\"281\" src=\"https:\/\/www.youtube.com\/embed\/sZ8nZlOb5Hg?feature=oembed\" frameborder=\"0\" allow=\"accelerometer; autoplay; clipboard-write; encrypted-media; gyroscope; picture-in-picture; web-share\" referrerpolicy=\"strict-origin-when-cross-origin\" allowfullscreen><\/iframe>\n<\/div><\/figure>\n","protected":false},"excerpt":{"rendered":"<p>Cybersecurity leader RiskIQ released its Vulnerability Landscape report, a high-level view of critical vulnerabilities in 12 widely used remote access and perimeter devices. The findings show that the rapidly increasing adoption of these devices amid the COVID-19 pandemic is expanding digital attack surfaces outside the corporate firewall at incredible speed\u2014and introducing a range of critical,<\/p>\n","protected":false},"author":44,"featured_media":13593,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[156],"tags":[1796,2325,2934],"post_mailing_queue_ids":[],"_links":{"self":[{"href":"https:\/\/blog.tmcnet.com\/blog\/rich-tehrani\/wp-json\/wp\/v2\/posts\/17867"}],"collection":[{"href":"https:\/\/blog.tmcnet.com\/blog\/rich-tehrani\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/blog.tmcnet.com\/blog\/rich-tehrani\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/blog.tmcnet.com\/blog\/rich-tehrani\/wp-json\/wp\/v2\/users\/44"}],"replies":[{"embeddable":true,"href":"https:\/\/blog.tmcnet.com\/blog\/rich-tehrani\/wp-json\/wp\/v2\/comments?post=17867"}],"version-history":[{"count":1,"href":"https:\/\/blog.tmcnet.com\/blog\/rich-tehrani\/wp-json\/wp\/v2\/posts\/17867\/revisions"}],"predecessor-version":[{"id":17868,"href":"https:\/\/blog.tmcnet.com\/blog\/rich-tehrani\/wp-json\/wp\/v2\/posts\/17867\/revisions\/17868"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/blog.tmcnet.com\/blog\/rich-tehrani\/wp-json\/wp\/v2\/media\/13593"}],"wp:attachment":[{"href":"https:\/\/blog.tmcnet.com\/blog\/rich-tehrani\/wp-json\/wp\/v2\/media?parent=17867"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/blog.tmcnet.com\/blog\/rich-tehrani\/wp-json\/wp\/v2\/categories?post=17867"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/blog.tmcnet.com\/blog\/rich-tehrani\/wp-json\/wp\/v2\/tags?post=17867"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}