Security Intelligence Expert On Cisco Routers Embedded Encryption Keys Security Issue

Ssecurity researchers revealed that several Cisco routers aimed at small businesses have the same embedded encryption keys. This can make it much easier for hackers to gain privileged access to the device. You can find more details on the story here.

https://twitter.com/cybersec2030/status/1192484480596008961

Experts Comments

November 08, 2019
Kevin Bocek
VP Security Strategy & Threat Intelligence
Venafi
Security researchers discovered that the same keys and certificates, which act as machine identities and control access to sensitive data, were embedded in several routers. This oversight makes it much easier for attackers to impersonate trusted machines or gain unauthorized, privileged access to these devices. It's unfortunate that many organizations still haven’t realized how important machine identities are to security. For example, it would be unthinkable for an organization to use the.....Read More
Security researchers discovered that the same keys and certificates, which act as machine identities and control access to sensitive data, were embedded in several routers. This oversight makes it much easier for attackers to impersonate trusted machines or gain unauthorized, privileged access to these devices. It's unfortunate that many organizations still haven’t realized how important machine identities are to security. For example, it would be unthinkable for an organization to use the same default password on multiple machines but similar missteps with keys and certificates are increasingly common. The only way to prevent these kinds of mistakes is to put in place a strong machine identity protection program  Read Less
What do you think of the topic? Do you agree with expert(s) or share your expert opinion below.
Be part of our growing Information Security Expert Community (1000+), please register here.