/c/cybersecurity - Cybersecurity News & Discussion

2127 readers

1 users here now

A community for technical news and discussion of cybersecurity and closely related topics.

founded 4 years ago

MODERATORS

[email protected]

Barracuda says hacked ESG appliances must be replaced immediately (www.bleepingcomputer.com)

submitted 1 year ago by [email protected] to c/[email protected]

1 comments fedilink hide all child comments

This news is “stunning” say many cybersecurity experts; it’s so bad that a patch can’t resolve it, companies have to completely stop using these (very expensive) machines and get new ones.

you are viewing a single comment's thread
view the rest of the comments

[–] Tempiz 1 points 1 year ago (1 children)

I do believe Barracuda came out with a new authentication mechanism to replace the magic links at the end of April. They are suggesting folks move over the temporary passcode authentication instead. You can read more about it in their blog post here: https://esstimeline.barracudanetworks.com/publications/temporary-passcode-authentication

I have began experimenting with this in my org today. I don't love sending auth codes over email, even if its only live for fifteen minutes, but we do need a solution to access shared mailbox quarantines without security team intervention. I suppose its better than the past magic links authentication we were using.