"We constantly find '0days' as part of pentests and use them against our customers. Just the other day, we used an 0day SQL injection bug in [popular manufacturer's name deleted] firewall to break into a customer."
—Rob Graham via Ars Technica
A firewall. Had an SQL injection bug.
A firewall. A security product.
With the most basic of web security bugs embedded.
Obviously, being a black hat these days is like shooting fish in a barrel. With a cannon.
No comments:
Post a Comment