all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Shielding servers instead of updating them?

Add to bookmarks
Oct. 24, 2023, 2:09 a.m. | /u/tecepeipe

cybersecurity www.reddit.com

Let's talk about large environments, chaos, high turnover, backlogs, neverending projects.

They are not even closing tickets, let alone update servers running x, y or z.

Pentesters (and external "hackers) are succeeding via outdated software on our servers, let's say PaperCut and similar having Remote Code Execution exposed to web.

IPS won't protect as this is exposed via firewall over HTTPS
WAF won't protect as usually we just have waf on "e-commerce or web portals" not on actual web "products". …

chaos code code execution cybersecurity environments exposed external hackers high ips large papercut projects protect remote code remote code execution running servers software tickets turnover update web

Visit resource

More from www.reddit.com / cybersecurity

Mentorship Monday - Post All Career, Education and Job questions here! 5 hours ago | www.reddit.com
advice ask asking career +13
Terrible interview process 7 hours ago | www.reddit.com
architect cutting cybersecurity endpoint +13
Is the CIA Triad created equal in practice? 11 hours ago | www.reddit.com
aspect availability cia confidentiality +10
How do you address your EDR platform when you aren’t receiving many true positives? 11 hours ago | www.reddit.com
address alerts behavior cybersecurity +8
What are some popular news or security content creators you guys follow to keep up … 11 hours ago | www.reddit.com
articles content creators creators cybersecurity +5
Looking for con suggestions that are mostly for skilled people not for vendors/management 13 hours ago | www.reddit.com
con corporate cybersecurity doing +7
How to effectively track security exceptions in mid-sized startup? 14 hours ago | www.reddit.com
aws basic cybersecurity database +19
Latrodectus Malware Analysis Part 2 feat Hashdb and IDA Scripting 16 hours ago | www.reddit.com
analysis cybersecurity ida latrodectus +3
Nasty bug with very simple exploit hits PHP just in time for the weekend 20 hours ago | www.reddit.com
bug cybersecurity exploit php +2

Jobs in InfoSec / Cybersecurity

Post a Job Search Talent

CyberSOC Technical Lead

@ Integrity360 | Sandyford, Dublin, Ireland
View on infosec-jobs.com

Cyber Security Strategy Consultant

@ Capco | New York City
View on infosec-jobs.com

Cyber Security Senior Consultant

@ Capco | Chicago, IL
View on infosec-jobs.com

Senior Security Researcher - Linux MacOS EDR (Cortex)

@ Palo Alto Networks | Tel Aviv-Yafo, Israel
View on infosec-jobs.com

Sr. Manager, NetSec GTM Programs

@ Palo Alto Networks | Santa Clara, CA, United States
View on infosec-jobs.com

SOC Analyst I

@ Fortress Security Risk Management | Cleveland, OH, United States
View on infosec-jobs.com