**K. Reid Wightman 🌻** @reverseics@infosec.exchange · Jul 18, 2024, 14:30

**K. Reid Wightman 🌻** @reverseics@infosec.exchange · Jul 18, 2024, 14:30

K. Reid Wightman 🌻 @reverseics@infosec.exchange

Jul 18, 2024, 14:30

K. Reid Wightman 🌻 @reverseics@infosec.exchange

Welp: https://arstechnica.com/security/2024/07/vulnerability-in-cisco-smart-software-manager-lets-attackers-change-any-user-password/

**Patrick Coyle** @Pjcoyle@qoto.org · Jul 18, 2024, 15:21

**Patrick Coyle** @Pjcoyle@qoto.org · Jul 18, 2024, 15:21

Jul 18, 2024, 15:21

Patrick Coyle @Pjcoyle@qoto.org

@reverseics WOW. Good thing that this 'software manager' is not used in ICS environments.... RIGHT????

**K. Reid Wightman 🌻** @reverseics@infosec.exchange · Jul 18, 2024, 15:25

**K. Reid Wightman 🌻** @reverseics@infosec.exchange · Jul 18, 2024, 15:25

Jul 18, 2024, 15:25

K. Reid Wightman 🌻 @reverseics@infosec.exchange

@Pjcoyle Use a network management service they said, it'll be better they said.

(Honestly I still believe that's true, better to have one big vulnerability to patch or remediate in one target than twenty five thousand weak passwords and vulnerabilities spread across 95 different subnets...)

**Patrick Coyle** @Pjcoyle@qoto.org · 2024-07-18T18:19:35Z

Patrick Coyle @Pjcoyle@qoto.org

@reverseics Hmmm. An interesting point, I need to think that through....

Jul 18, 2024, 18:19 · · · ·

Resources

Developers

What is Mastodon?

qoto.org

More…