Payroll printer, HR's server - wahey... jackpot!
7 Sep 2016 at 15:06, John Leyden Network Management Systems are far more easily attacked than previously reckoned, according to new research by Rapid7.
The firm behind the popular Metasploit penetration testing tool warns that vulnerabilities in systems used to manage network elements (routers, servers, printers and more) offers attackers a “treasure map” of valuable - and perhaps non-obvious - enterprise targets, such as the printer that is responsible for payroll runs, or HR's central server containing personally identifiable information on the employee base.
The new research from Rapid7 explores how it is often possible to attack various types of network management system (NMS) over the Simple Network Management Protocol (SNMP), a protocol used extensively by NMSes to manage and monitor a wide variety of networked devices. Three distinct attack vectors are explored:
Full Article