all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Shielding servers instead of updating them?

Add to bookmarks
Oct. 24, 2023, 2:09 a.m. | /u/tecepeipe

cybersecurity www.reddit.com

Let's talk about large environments, chaos, high turnover, backlogs, neverending projects.

They are not even closing tickets, let alone update servers running x, y or z.

Pentesters (and external "hackers) are succeeding via outdated software on our servers, let's say PaperCut and similar having Remote Code Execution exposed to web.

IPS won't protect as this is exposed via firewall over HTTPS
WAF won't protect as usually we just have waf on "e-commerce or web portals" not on actual web "products". …

chaos code code execution cybersecurity environments exposed external hackers high ips large papercut projects protect remote code remote code execution running servers software tickets turnover update web

Visit resource

More from www.reddit.com / cybersecurity

UCF wins the National Collegiate Cyber Defense Competition 2 hours ago | www.reddit.com
competition cyber cyber defense cybersecurity +4
How much knowledge do you guys know about the industry that you work in? 8 hours ago | www.reddit.com
banking cybersecurity etc gas +8
Cisco reveals zero-day attacks used by hackers to attack government networks in major threat campaign 9 hours ago | www.reddit.com
attack attacks campaign cisco +7
Any Fortune 100 company go all in on Microsoft E5 Security Suite? 19 hours ago | www.reddit.com
all in cybersecurity defender defenders +12
Blueteam Certification like cybersecurity engineers 20 hours ago | www.reddit.com
architect blueteam certification certifications +12
Fake job interviews target developers with new Python backdoor 1 day ago | www.reddit.com
backdoor cybersecurity developers fake +7
Passkeys: A Shattered Dream 1 day ago | www.reddit.com
cybersecurity dream passkeys
Cyberattack Gold: SBOMs Offer an Easy Census of Vulnerable Software 1 day ago | www.reddit.com
census cyberattack cybersecurity easy +4
Ukraine's military intelligence launches cyberattack against United Russia party 1 day ago | www.reddit.com
cyberattack cybersecurity intelligence military +4

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Senior Security Researcher, SIEM

@ Huntress | Remote Canada
View on infosec-jobs.com

Senior Application Security Engineer

@ Revinate | San Francisco Bay Area
View on infosec-jobs.com

Cyber Security Manager

@ American Express Global Business Travel | United States - New York - Virtual Location
View on infosec-jobs.com

Incident Responder Intern

@ Bentley Systems | Remote, PA, US
View on infosec-jobs.com

SC2024-003533 Senior Online Vulnerability Assessment Analyst (CTS) - THU 9 May

@ EMW, Inc. | Mons, Wallonia, Belgium
View on infosec-jobs.com
View more jobs