1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Hard-coded passwords remain a key security flaw

Discussion in 'Network World' started by RSS, Mar 7, 2016.

  1. RSS

    RSS New Member Member

    From Juniper to Fortinet and Cisco, a lot of companies have been cited for having shipped products that contain hard-coded passcodes, which poses security risks to the enterprise.

    This common developer flaw is a widespread problem that isn’t likely to go away any time soon, said Alex McGeorge, head of threat intelligence, Immunity Inc.

    Unfortunately, hard-coded passwords are an intrinsically hard problem to solve, and McGeorge said, “There is not a great solution to it. People are getting compromised all the time. Security is a hard problem to solve.”

    People who make networking gear are big targets and development companies are very protective of their source code because that’s their life code. “We saw the case that Cisco brought against Huawei Technologies claiming that Huawei had stolen their source code and were using it in their own brand,” said McGeorge.

    To read this article in full or to leave a comment, please click here

    Continue reading...

Share This Page