Language Selection

English French German Italian Portuguese Spanish

Hackers race to expose Cisco Internet flaw

Filed under
Security

Computer hackers worked through the weekend to expose a flaw that could allow an attacker to take control of the Cisco Systems Inc. routers that direct traffic across much of the Internet.

Angered and inspired by Cisco's attempts to suppress news of the flaw earlier in the week, several computer security experts at the Defcon computer-security conference worked past midnight Saturday to discover and map out the vulnerability.

"The reason we're doing this is because someone said you can't," said one hacker, who like the others spoke to Reuters on condition of anonymity.

Cisco's routers direct traffic across at least 60 percent of the Internet and the security hole has dominated a pair of conferences that draw thousands of security researchers, U.S. government employees and teenage troublemakers to Las Vegas each summer.

The hackers said they had no intention of hijacking e-commerce payments, reading private e-mail, or launching any of the other malicious attacks that could be possible by exploiting the flaw.

Rather, they said they wanted to illustrate the need for Cisco customers to update their software to defend against such possibilities. Many Cisco customers have postponed the difficult process because it could require them to unplug entirely from the Internet.

Full Story.

More in Tux Machines

today's howtos

Ubuntu Leftovers

Android Leftovers

Arduino-Compatible RISC-V and More

  • HiFive1 Is an Open-Source, Arduino-Compatible RISC-V Dev Kit
    Bay Area startup SiFive has announced the Freedom Everywhere 310 (FE310) system-on-chip — the industry’s first commercially-available SoC based on the free, open-source RISC-V architecture, along with the corresponding low-cost, Arduino-compatible HiFive1 development kit.
  • Samsung Defection From ARM to RISC-V.
    It was always thought that, when ARM relinquished its independence, its customers would look around for other alternatives. The nice thing about RISC-V is that it’s independent, open source and royalty-free. And RISC-V is what Samsung is reported to be using for an IoT CPU in preference to ARM.
  • Neutralize ME firmware on SandyBridge and IvyBridge platforms
    First introduced in Intel’s 965 Express Chipset Family, the Intel Management Engine (ME) is a separate computing environment physically located in the (G)MCH chip (for Core 2 family CPUs which is separate from the northbridge), or PCH chip replacing ICH(for Core i3/i5/i7 which is integrated with northbridge).