Slashdot Mirror

How do they know what os you run? I want to see proof of this.

The most common phrasing of this is "How do cellular carriers detect tethering?" Methods include IP TTL/hop count values, MAC numbers, TCP implementation fingerprinting, User-agent of cleartext HTTP requests, and sniffing DNS/SNI for requests to OS update servers. A Cisco manual explains what Cisco ECS does.

Ever wonder why people consider you a nutcase? This isn't about America. It isn't about Apple, it's about Europe and it's about Huawei, a provider of known spyware. There must be some reason that Huawei is going to hold up 5G rollout.

People also seem to have forgotten (or not know about) Huawei's code theft from Cisco:

* https://blogs.cisco.com/news/h...

Isn't there some way this can be Google's fault?

Huawei and Cisco’s Source Code: Correcting the Record. Can't believe that they bothered copying a strcmp.c file!

Well that was easy. https://newsroom.cisco.com/feature-content?articleId=1644611
How innovative apple.

Cisco actually has a Visio icon for their Space Router. PACKETS!!! IN SPAAAAAACE!!

"No one has "live" encoded video on anything other than dedicated encoding hardware in a really REALLY long time."

That is actually not true - the industry is moving away from specialized encoding ASICs to more flexible VM-based encoders (for example see the Cisco/Synamedia Virtual DCM.

But regardless, it takes years for the ASICs to be spun up, and complexity is complexity. ASICs are more efficient than CPU/GPU, but they still need to do all the computational work, so an HEVC encoder ASIC will take a lot less power than an AV1 encoder ASIC.

https://tools.cisco.com/securi...

As a special customer service, and to improve the overall security of the Internet, Cisco may offer customers free software updates to address high-severity security problems. The decision to provide free software updates is made on a case-by-case basis. Refer to the Cisco security publication for details. Free software updates will typically be limited to Critical and High severity Cisco Security Advisories.

Sample security advisory:

https://tools.cisco.com/securi...

Cisco has released free software updates that address the vulnerability described in this advisory. Customers may only install and expect support for software versions and feature sets for which they have purchased a license.

They do a reasonable thing on support side by the look of it.

https://tools.cisco.com/securi...

As a special customer service, and to improve the overall security of the Internet, Cisco may offer customers free software updates to address high-severity security problems. The decision to provide free software updates is made on a case-by-case basis. Refer to the Cisco security publication for details. Free software updates will typically be limited to Critical and High severity Cisco Security Advisories.

Sample security advisory:

https://tools.cisco.com/securi...

Cisco has released free software updates that address the vulnerability described in this advisory. Customers may only install and expect support for software versions and feature sets for which they have purchased a license.

They do a reasonable thing on support side by the look of it.

Tracking and advertising. These things emit BLE beacons that apps on your smartphone pick up. This allows for analytics in malls, geofencing ads, ... (Look up Eddystone and iBeacon.) That coupon app for your supermarket chain? Allows them to track your every move through their store, from the moment you enter to when you check out.

Other uses include "indoor GPS" (having the app show your location in the building on a map, ...).

https://documentation.meraki.c...
https://www.arubanetworks.com/...
https://www.cisco.com/c/en/us/...

I think you're confusing it with 10.x.x.x.

I don't think they are. For example: https://supportforums.cisco.co...

The reports are created by Cognitive Analytics Engine - see https://cognitive.cisco.com/. The reports do not necessarily lead to an immediate blocking - it's up to your policy and security response team to define what happens with the findings. To the amount of "bycatch" - we carefully look for precision and recall of the individual detectors so the amount of "bycatch" is not as high as you expect. I said we because I work in the "Cognitive" team.

https://www.cisco.com/c/dam/en...

"Encrypted Traffic Analytics extracts four main data elements: the sequence of packet lengths and times, the byte distribution, TLS-specific features and the initial data packet."

https://blogs.cisco.com/securi...

March 23, 2017

Even if you read as plain text, at some point, some code may parse the malicious code.

Not even RTF is safe https://blogs.cisco.com/securi...

Sure I have. It's still not meant to be used as a primary home internet connection. There's a reason wireless is also called "mobile". It's designed to be used while you're on the go.

You should tell that to all those manufacturers who have been putting radios in their routers for the last decade. Or the entire companies built around the idea of fixed point cellular service. Or the entire concept of fixed LTE that's been expanding everywhere.

What was it? 1998?

Seriously, this is just begging for an ad from Cisco

Just a couple things, that wire through the wall can't perform packet inspection and letting anybody get physical access to your server (or needing to in order to perform their job) is a security fail that belongs in a casino-heist movie.

just sayin

This is a matter of economics. Some of the expenses for running an application vary significantly in proportion to use while others do not. In the case of cloud services and particularly for comprehensive services, this allows for the lowest achievable cost as there is not limit on savings at scale and less wasted/unused capacity over time.

You may idealize Hadoop, Pig, Scala, et al. but realize that hosting any part of your own solution requires major investment in hardware, utility, and especially personnel. That isn't just "programmers, that includes maintenance workers from janitors to facilities professionals and everyone else required to keep a building in working order. Then additional financial costs in insurance, loan amortization given the huge capital expenditures otherwise required, etc.

This is what enables arguments for a fixed price or some mix of fixed and metered usage billing. IT in business is a business process, and in most companies IT services are a cost center best minimized to allow more productive investments for actual business growth.

When IPV6 is configured on a Windows machine and it is getting & attempting to use AAAA DNS records, resulting in a 30 second timeouts, that's when I diable IPV6: http://blogs.cisco.com/enterpr...

Yeah, it's the client's network that "should" be fixed, but I've given up at tilting at windmills. I'll just tell them that their IPV6 is messed up, disable IPV6 on the server with the issues getting rid of the timeouts and move on.

Thats using a sledgehammer to crack a nut. You don't need to disable IPv6 to do that.

When IPV6 is configured on a Windows machine and it is getting & attempting to use AAAA DNS records, resulting in a 30 second timeouts, that's when I diable IPV6: http://blogs.cisco.com/enterpr...

Yeah, it's the client's network that "should" be fixed, but I've given up at tilting at windmills. I'll just tell them that their IPV6 is messed up, disable IPV6 on the server with the issues getting rid of the timeouts and move on.

In the 1990s I worked on a complex device driver for OS/2 for ATM networking (asynchronous transfer mode). The driver was around 100K lines of C++ code however only a subset of C++ was used. Surprisingly the use of C++ worked out quite well. We had an equivalent driver for Windows NT that was written in C that was over 300K lines of code. The C++ codebase was a lot more reliable and easier to work on, despite all the work that was done to make C++ work in kernel mode under OS/2. The C++ driver actually had more functionality than the C driver and it was faster as well with a smaller binary. Also, as I said, it was a subset of C++, especially in the performance critical code. The driver in question included the entire ATM signalling stack and implemented full LAN emulation support with both Ethernet and Tokenring plus it could emulate multiple networks (ELANs, equivalent to VLANs) simultaneously. When I implemented multiple ELAN support I was afraid it was going to be a nightmare, but due to the way it was architected in C++ I ended up only having to change a few lines of code, changing a pointer to the LANE class to an array of pointers.

For the signalling stack and ILMI C++ worked out especially well due to the event and message based nature of it and the various state machines. For LAN emulation it made it easy to support both Ethernet and Tokenring by having a few virtual functions in the main LANE class.

There was no exception handling support and none of the more complex C++ features were not used. It used templates but that was also somewhat limited.

Having destructors was also quite nice, making it easy to clean up resources.

Despite being C++, debugging wasn't too bad though at the time the OS/2 kernel debugger basically ran at the assembly level.

If the infrastructure is in place I can certainly see using C++ in the kernel and device drivers.

http://www.cisco.com/c/en/us/p...

I don't think you know what a switch does.

Maybe the problem is worse than that! Maybe Cisco themselves don't know what a switch does, since they offer an IDS module for their flagship core switch:

http://www.cisco.com/en/US/pro...

And this seems like a serious problem in the networking industry. Apparently Alcatel-Lucent doesn't know either, since there's a built-in IDS in their core switch.

http://enterprise.alcatel-luce...

And - OMG - even HP is completely confused about this technology, since they also have IDS on their core switch.

Or maybe, just maybe, you vastly overestimate your understanding of enterprise networking.

Some hardware manufacturers seem to be doing so for quite some time, for various reasons. For example Cisco has been equipping its routers with such chips for many years:
http://www.cisco.com/c/en/us/p...

They have a whole process for securely booting such devices:
http://www.cisco.com/c/en/us/a...

Given increasing numbers of counterfeit manufactured devices and NSA tricks this is likely going to become more widespread.

Some hardware manufacturers seem to be doing so for quite some time, for various reasons. For example Cisco has been equipping its routers with such chips for many years:
http://www.cisco.com/c/en/us/p...

They have a whole process for securely booting such devices:
http://www.cisco.com/c/en/us/a...

Given increasing numbers of counterfeit manufactured devices and NSA tricks this is likely going to become more widespread.

I just ended my 1.5 years/18 months contract work with Cisco. There are many people who work remotely from homes like me. It was very different from what I had done with my previous (employer/job)s. It was very nice with flexibilities, no commuting at all, etc. Everything was done online. It also helps me since I am an online type since I have multiple disabilities. I would love to do it again.

Okay...except if you had actually read the article, even if you had read the summary, you'd have realized that it wasn't just "one slacker responding with this to a customer," it's a bug report on the company's own website:

https://quickview.cloudapps.ci...

You know what else tarnishes a brand in the IT world? People like you. People who think they know better but don't, people who should have retired years ago but won't. Supposed "professionals" who can't even be bothered to read more than a sentence on the site they've been visiting for YEARS.

"Disclaimer of Liabilities - Limitation" Page 16, states that (condensed) : all liability shall not exceed the price paid for the software, or of the price of the product which includes the software.

And to use the equipment and Cisco software, you agree to the terms of service.

http://www.cisco.com/c/en/us/t...

So, at best, they can recover the costs of the switches involved. . .

Reading the Cisco advisory, this honestly doesn't seem like a huge problem. In addition to needing SNMP connectivity to the ASA (which in any competent installation would be blocked from Internet) you also need the SNMP Community String.

Here is the advisory: https://tools.cisco.com/securi...

Am I missing something?

The exploit is specific to ASA software versions 8.0 - 8.4
8.5 was released in March of 2012.
The current version of ASA software is 9.6
http://www.cisco.com/c/en/us/t...

Why would anybody still be running 8.0 - 8.4 ??

The Shadow Brokers github repo was taken down but not before it was mirrored :)

https://github.com/nneonneo/eqgrp-free-file

Everything (that was made available in the sample tarball) is inside the Firewall folder.
Most of the human readable stuff is in Firewall/OPS and Firewall/SCRIPTS.

From the very little scanning I did, it seems most of the stuff is meant to attack Cisco PIX and Cisco ASA firewalls/routers.

There are quite a few scripts for preparing/setting up an ops terminal from which an antagonist can launch attacks.

One of the attack techniques involves instructing a pix/asa to fetch an implant over http (or ftp) from a web server running on an ops terminal.
So some of scripts install an http server (apache or tiny httpd) on the ops terminal.
The antagonist supplies the implant (the software bug) on the ops terminal.
Then they use vulnerabilities in the pix to instruct it to fetch the implant, upgrade the target's OS or load a module into the running system and then that gives them full access.

The binaries and implants are provided in the repo as well.

Fix the summary.

Layoffs of 14k was purely speculation by CRN, Cisco announced 5500 people:

https://newsroom.cisco.com/press-release-content?type=webcontent&articleId=1784571

The restructuring will eliminate up to 5,500 positions, representing approximately 7 percent of our global workforce, and we will take action under this plan beginning in the first quarter of fiscal 2017.

The advantage of silicon photonics is to integrate the optical elements (lasers & PIN diodes) into the silicion drivers and amplifiers, theoretically reducing cost.

There are already 100 Gbps CWDM4 QSFP28 (4 wavelengths of 25 Gbps on 2 fibers) and 100 Gbps PSM4 QSFP28 (single 25 Gbps wavelength on 8 parallel fibers) transceivers out there, but they need discrete lasers & PIN diodes in InP or GaAs, not silicon.

So we will see how Intel's silicon photonics 100 Gbps CWDM4 QSFP28 and 100 Gbps PSM4 QSFP28 transceivers end up being priced.

My impression is that 50 Gbps wavelengths are coming soon (using 4-level PAM), so two of those will be 100 Gbps. But the holy grail is the one wavelength 100 Gbps, likely some kind of high-order modulation (HOM). AppliedMicro has demonstrated a 100 Gbps single-wavelength PAM4, but no word on distance.

Software still needs hardware to run on, right?

In other news, layoffs of this size baffle me. This, and the 12,000 from Intel a few months ago are almost too large to comprehend. And why so sudden? Have you ever woken up one day and decided that you didn't need 20% of your stuff? Is Cisco really so sure right this second that they need to change what they're doing so much that the only way to accomplish this change is to hack away a solid fifth of the company? And are they getting rid of 20% of their executive team as well? How many of these people will be looking for work in the near future? Out of those 60-odd people, I expect to see 12 of them out of a job. Right?

"the international hub for the Olympics, was found to host many networks that are capable of decrypting Secure Sockets Layer (SSL) traffic — undoing a protocol put in place to keep data protected." link

Only if the client desktop computer is configured to accept forged certs as used in the Cisco SSL Inspection device.

I was thinking the same thing, but what if a person used a span port to mirror the traffic and send the mirrored traffic to a device capable of SSL decrypt? Couldn't that info be logged using that method?

"the international hub for the Olympics, was found to host many networks that are capable of decrypting Secure Sockets Layer (SSL) traffic — undoing a protocol put in place to keep data protected." link

Only if the client desktop computer is configured to accept forged certs as used in the Cisco SSL Inspection device.

You cannot assume that that the reported data rate (slide 7) is decreased due to 8b/10b encoding.

As in gigabit ethernet, the media appears to be reporting a data rate where the signalling rate would be ((10b/8b)-1) higher (e.g., in gigabit ethernet, 1.25 Gbps). That being said, it could easily be the reverse and people are mistakenly reporting the signalling rate as a data rate.

I don't work in this area, so I can't say. I've gotten as close to an "official" source as I can in the first link.

I have been reading many different types of justifications on the security of the CPU makers (whatever be the brand). However we can't overestimate the fact that we are humans and that anybody can make mistakes, in particular with so complex artifacts as CPUs. These hidden parts and their security mechanisms can have bugs (yesterday, today or tomorrow). And also, they are not designed only to work with previous and current scenarios, but with the unknown future ones that are completely unexpected.

Thinking on this issue I checked quickly what CPUs have the Cisco Firewalls (just to check a famous brand), and notice that they have different ones depending on the appliance model, from the AMD Geode to some Intel Xeon variants, so there are possibilities even on security appliances for this to be exploited.

The problem with this hidden CPU approach is that they can bypass the computer built security without the operating system noticing it, with potentially dangerous consequences. And we are updating our software regularly but the most of the people is not aware of the updating on the underlying things (if they can be updated). The lack of knowledge in this respect is a dangerous thing.

But what can be done?

A very few are careful enough on checking the internal hardware specifications on the networking devices, the ones could protect any not so well controlled hidden device inside our network. So, it is really important to learn more about what we really have and if it is possible to combine "different" layers of appliances. For example, not to rely only on Intel or only on AMD for both servers and security appliances, or even to combine x64 and x32 with ARM, MIPS or other type of CPUs. This way, if there is a breach because some architectural failure, the next layer won't suffer the same fate because it is different (not necessarily because it is better). This combination of suppliers is something it is already being recommended for antivirus on enterprise environments (don't trust only in one supplier).

On the other case, when knowing extra ports and other elements that nobody is actively controlling within our network, will be possible to understand better that maybe that "extra" traffic has a hardware and not a software origin.

Our modern environments are rich and powerful, but this richness doesn't come for free. We need to understand it and control it correctly.

https://communities.cisco.com/...

Sorry, cut-pasto, dot1Qbg. Though my understanding is a lot of places these days throw that in the trash and just fire up a bunch of GRE tunnels.

My instructor said he knew a guy (don't they all?) who had a CCIE and worked as an independent contractor making six figures for about six months of work a year.

It's easily possible to make six figures for six months of work, especially if this is gov contract work overseas or in other remote specialized environments.

Those same companies that built the infrastructure promising a national profit of $19 trillion. http://www.cisco.com/c/en/us/s.... IMO, the Internet of Thangs will be a good portion done by small businesses for very specific markets or even particular companies. We should all become engineers and build the machines to replace us. "Machines are going to take your job, and then they're going to take your life." Taylor Swift ~~~~ 3

Zedo specifically & malvertising stopping's a HUGE PART of what my program prevents infection from - C&C list to stop it versions 1.x-4.x:

1.x (source https://barracudalabs.com/2014... )

hindustantimes.com, bollywoodhungama.com, one.co.il, codingforums.com, mawdoo3.com, zedo.com, c1.zedo.com, c2.zedo.com, c3.zedo.com, c4.zedo.com, c5.zedo.com, ss1.zedo.com, static.rcs7.org, xenon.asapparts.com, rcs7.org, asapparts.com

2.x-3.x (source http://blogs.cisco.com/securit...):

paytordmbdekmizq.tor4pay.com, tor4pay.com, paytordmbdekmizq.pay2tor.com, pay2tor.com, paytordmbdekmizq.tor2pay.com, tor2pay.com, paytordmbdekmizq.pay4tor.com, pay4tor.com,
eportfolio.ccpullman.ca, ccpullman.ca, www.mg-unterburg.ch, mg-unterburg.ch, www.sportantiques.co.uk,
sportantiques.co.uk, www.drk-wettringen.de, drk-wettringen.de, www.rock-times.com, rock-times.com, www.footstepphotography.co.uk, footstepphotography.co.uk, www.choosingcruising.co.uk, , choosingcruising.co.uk, www.felixwoman.com, felixwoman.com, www.projetorideal.com, projetorideal.com,
www.jimcole.be, jimcole.be, www.jes.or.at, jes.or.at, or.at,
artpartner.cz, www.meihuainfo.com, meihuainfo.com, www.grekiskaforeningen.com, grekiskaforeningen.com, www.cup-neumann.de, cup-neumann.de, ww.areaverda.com, areaverda.com, , www.yemekyapmak.com, yemekyapmak.com

4.x (source http://www.tripwire.com/state-... ):

abelinda.com, purposenowacademy.com, mycampusjuice.com, thegingod.com, yahoosupportaustralia.com, successafter60.com, alltimefacts.com, csscott.com, smfinternational.com,
lexscheep.com, posrednik-china.com, ks0407.com, stwholesaleinc.com, ainahanaudoula.com, httthanglong.com, myshop.lk, parsimaj.com, kingalter.com, shrisaisales.com, cjforudesigns.com, mabawamathare.org, manisidhu.in, adcconsulting.net, frc-pr.com, , localburialinsuranceinfo.com, smfinternational.com, 3wzn5p1ylumh7ak.j.paypartnerstodo.com, j.paypartnerstodo.com, paypartnerstodo.com, 3wzn5p1ylumh7ak.j.allepohelpto.com, j.allepohelpto.com,
allepohelpto.com, 3wzn5p1ylumh7ak.j.barklpaypartners.com, j.barklpaypartners.com, barklpaypartners.com, 3wzn5p1ylumh7ak.j.maverickpaypartners.com, j.maverickpaypartners.com, maverickpaypartners.com,

* What's that you said that my program doesn't stop "Common Ransonware Threats"?

APK

P.S.=> My last post also puts down another 'variant' of it in CryptXXX / Locky... want JAKU too? apk

All you need to do is read Cisco's documentation to learn about their backdoors.

http://www.cisco.com/c/en/us/t...

With Rogue DNS used by malware makers also for MORE DNS BS against your crap (wait till I do antivir too, lol):

http://tech.slashdot.org/story...
https://threatpost.com/en_us/b...
http://dns.measurement-factory...

ROGUE DNS SERVERS:

http://blogs.cisco.com/securit...

APK

P.S.=> See subject & ROUTER DNS issues next... apk

Is a class tunnel some means by which one travels between socioeconomic enclaves?

http://www.cisco.com/c/en/us/t...

"the Presidential hopeful states the new law is necessary because the FCC's "burdensome" net neutrality rules are destroying innovation, diversity, and network investment."

Examples plz

There seem to be some problems.

Net Neutrality - Issues

Strict Net neutrality legislation would limit the terms, conditions, and potentially prices set by broadband Internet service providers. This could restrict their ability to use innovative network management technology, provide appropriate levels of quality of service, and deliver new features and services to meet evolving consumer needs.

Cisco believes that allowing the development of differentiated broadband products, with different service and content offerings, will enhance the broadband market for consumers.

Net neutrality for dummies

Net Neutrality is a solution in search of a problem. The reader has probably not encountered much difficulty accessing even the smallest web sites. Big sites that deliver huge amounts of multimedia content with blistering speed pay extra for their performance, but this happily leaves ISPs with plenty of lower-cost extra bandwidth to sell. Net Neutrality would be movement, at gunpoint, away from efficient Internet capitalism, and into dreary online socialism. Imagine what would happen to Internet traffic if ISPs were required to treat obscure cat blogs the same way they handle Fox News, CNN and Netflix.

Net Neutrality would foul things up on the user end of the Internet experience, too. Most basic Internet services have some sort of usage cap, beyond which performance is automatically slowed down. The caps are very high, so average users are perfectly happy with this arrangement. Even cell phone users, with more aggressive usage caps than household cable or DSL access, rarely encounter their service limits. Those who desire more bandwidthâ"most commonly for downloading large amounts of multimedia content, like high-definition moviesâ"can pay extra to raise or remove their usage limits.

This kind of multi-tiered service is the reason cheaper, "lower-tiered" service exists at all. It would be silly to charge the same rate to an average home user who fiddles with email and Facebook for a couple of hours each day, versus a movie fanatic who wants to download a hundred high-def movies a month.

At worst, Net Neutrality would "redistribute" bandwidth, so that network hogs have no reason not to download everything in creation, at all hours. Meanwhile, those average users would be reduced to hammering their keyboards in frustration, and wondering why even simple everyday websites took several minutes to load. The past would become a bygone age of wonders.

Net Neutrality waivers

As always, vast power would accrue to those who control the "redistribution" of Internet bandwidth. It wouldn't be long before the first Net Neutrality waivers appeared, the same way ObamaCare is riddled with special exemptions for the politically connected. Like so much else in our centrally planned economy, Internet access would become a boon granted by politicians, rather than a commodity sold by businesses.

The proponents of Net Neutrality sell their agenda by inverting the language of freedom, warning darkly of evil ISPs "blocking" content from website proprietors if they don't pay a ransom. This is true in precisely the same sense that motorists who drive a Chevy Volt are "blocked' from driving as fast as a Porsche can. Net Neutrality "solves" this "problem" by outlawing Porsches . . . and spending taxpayer money on an army of regulators to ensure that every car dealership sells nothing but Volts.

Net Neutrality shares many attributes of the Left's other favored causes. It's steeped in anti-capitalist rhetoric, and d

https://tools.cisco.com/securi...

https://social.technet.microso...

http://www.kb.cert.org/vuls/id...

It's just a harmless protocol - nothing to worry about.

I have a tracker on every device my family owns (that support it, anyway - all cells, tablets, laptops, desktops). My wife/kids are just as welcome to look up my location at any time (I tend to be in one of 3 places or commuting between, not very exciting) - the thing is, I have to have a reason to look up where a device is. I don't have (or want) logs; where it is now (or 'last seen') is plenty, but it has helped on multiple occasions where a device was misplaced (Beacon works great) or my wife was somewhere she couldn't hear her phone set to silent - I could see she was still there and not missing my call because she was in a wreck on the way home.

Non-consensual monitoring is wrong (except in some extreme cases with minors that I hope to never experience), also 3rd parties monitoring our whereabouts, but for me and my immediate family to be able to see where each other is (are? Some Grammar Nazi please correct me if wrong) at a glance as needed? I don't have a problem with it. I even use Waze when commuting so my wife knows when (typically within a 1-2 minute margin of error - better than I'd generally know in advance & I don't like to use the phone [other than GPS which is usually running with the screen off] while driving) I'll be home for dinner.

Oh, and I'm not the sort that uses Facebook/Twitter/whatever to broadcast every thing I do (or anything, I don't use any of those) - I'm privacy conscious, but my business (largely) is my family's business (and vice-versa). I think the trouble is when people don't view it as a 2-way street.

Sorry for the novella :)

I use Meraki (bonus is I can also see where all of my devices are at a given time - handy the time my daughter's phone was stolen at school).

http://www.bing.com/search?q=r...
http://tech.slashdot.org/story...
http://thestack.com/root-comma...
http://thestack.com/zyxeltech-...
http://threatpost.com/12-milli...
http://threatpost.com/dns-base...
http://threatpost.com/internet...
http://voices.washingtonpost.c...
http://www.cbc.ca/technology/s...
http://www.dshield.org/diary/+...
http://www.dshield.org/diary/2...
http://www.dshield.org/diary/5...
http://tools.cisco.com/securit...
http://tools.cisco.com/securit...
http://tools.cisco.com/securit...

APK

P.S.=> So much for your faith in routers alone stupid (225 in total, 15 posts with 15 items each)... apk

http://www.bing.com/search?q=r...
http://tech.slashdot.org/story...
http://thestack.com/root-comma...
http://thestack.com/zyxeltech-...
http://threatpost.com/12-milli...
http://threatpost.com/dns-base...
http://threatpost.com/internet...
http://voices.washingtonpost.c...
http://www.cbc.ca/technology/s...
http://www.dshield.org/diary/+...
http://www.dshield.org/diary/2...
http://www.dshield.org/diary/5...
http://tools.cisco.com/securit...
http://tools.cisco.com/securit...
http://tools.cisco.com/securit...

APK

P.S.=> So much for your faith in routers alone stupid (225 in total, 15 posts with 15 items each)... apk