Network Break 228: ASUS Spanked By Malware; Cisco Launches Decibel Venture Firm

The Everything Feed - All Packet Pushers Pods - A podcast by Packet Pushers

Categories:

Technology

Take a Network Break! Attackers infiltrate ASUS’s update servers to propagate malware to customers, Cisco gets caught issuing a lazy security patch for its RV320 and RV325 routers, and Huawei takes four years to fix vulnerable code.
Britain’s Huawei Cyber Security Evaluation Centre (HCSEC) Oversight Board gives Huawei poor marks for software engineering and security hygiene practices, AWS announces Voice Collector for toll bypass as part of its Chime collaboration package, and Microsoft rolls out Data Box hardware for hybrid Azure use cases.
Cisco launches Decibel, an independent venture capital firm to spur enterprise startups, OpenDaylight debuts the Neon release of its SDN controller, and a former startup employee takes some shine off the startup dream.
Citrix rebrands XenServer to Citrix Hypervisor, and Office Depot gets smacked with a $25 million fine from the FTC for scamming customers with crooked malware scans.
Sponsor: ExtraHop
ExtraHop is the enterprise cyber analytics company delivering performance and security from the inside out. ExtraHop offers complete visibility with machine learning to help you make quick, confident decisions about your IT environment. Explore the ExtraHop Performance Platform at extrahop.com/packetpushers.
TechBytes: Arrcus And LSVR
Stay tuned after the news for a conversation about a new data center protocol, Link State Vector Routing (LSVR). We talk with sponsor Arrcus about how its ArcOS network operating system leverages LSVR to help you build a BGP-based data center fabric.
Show Links:
Malicious updates for ASUS laptops – Kaspersky Lab official blog
Hackers Hijacked ASUS Software Updates to Install Backdoors on Thousands of Computers – Motherboard
Hackers dropped a secret backdoor in Asus’ update software – TechCrunch
ASUS response to the recent media reports regarding ASUS Live Update tool attack – ASUS
How Microsoft found a Huawei driver that opened systems to attack – Ars Technica
Cisco bungled RV320/RV325 patches, routers still exposed to hacks – ZDNet
Huawei’s half-arsed router patching left kit open to botnets: Chinese giant was warned years ago – then bungled it – The Register
Huawei cyber security evaluation centre oversight board: annual report 2019 – Huawei Cyber Security Evaluation Centre (HCSEC) Oversight Board (PDF)
Huawei savaged by Brit code review board over pisspoor dev practices – The Register