this post was submitted on 06 Aug 2024
37 points (95.1% liked)

Cybersecurity

5700 readers
141 users here now

c/cybersecurity is a community centered on the cybersecurity and information security profession. You can come here to discuss news, post something interesting, or just chat with others.

THE RULES

Instance Rules

Community Rules

If you ask someone to hack your "friends" socials you're just going to get banned so don't do that.

Learn about hacking

Hack the Box

Try Hack Me

Pico Capture the flag

Other security-related communities [email protected] [email protected] [email protected] [email protected] [email protected] [email protected] [email protected]

Notable mention to [email protected]

founded 1 year ago
MODERATORS
top 6 comments
sorted by: hot top controversial new old
[–] [email protected] 29 points 3 months ago (2 children)

TL;DR people don’t update their shit

[–] [email protected] 9 points 3 months ago

surprised Pikachu face

[–] [email protected] 3 points 3 months ago

Also: vendors don't update their shit.

[–] [email protected] 8 points 3 months ago* (last edited 3 months ago)

If you have a internet attached device and it isn't getting systematic and timely updates, you have a time bomb. Doesn't matter who made the device initially

Ubiquity has patched the issue identified in the article, people have these devices deployed and they are not patching them....

[–] [email protected] 1 points 3 months ago

This is why I avoid opening up "service" devices to the broader internet.

My current work around is to access a computer with TeamViewer on a given local network and manage things from there. There are probably flaws with this approach too, but it seems like a more manageable solution than giving IoT-type devices access to the open internet.

I do wonder if protocol like Yggdrasil would be a good solution in the future.

[–] [email protected] 0 points 3 months ago

That’s why I have firewalls 🤷🏻‍♂️