Ssecurity researchers revealed that several Cisco routers aimed at small businesses have the same embedded encryption keys. This can make it much easier for hackers to gain privileged access to the device. You can find more details on the story here.
https://twitter.com/cybersec2030/status/1192484480596008961
Information Security Buzz (aka ISBuzz News) is an independent resource that provides the experts comments, analysis and opinion on the latest Information Security news and topics
Security researchers discovered that the same keys and certificates, which act as machine identities and control access to sensitive data, were embedded in several routers. This oversight makes it much easier for attackers to impersonate trusted machines or gain unauthorized, privileged access to these devices.
It\’s unfortunate that many organizations still haven’t realized how important machine identities are to security. For example, it would be unthinkable for an organization to use the same default password on multiple machines but similar missteps with keys and certificates are increasingly common.
The only way to prevent these kinds of mistakes is to put in place a strong machine identity protection program