“We all know there are a number of different security devices that need to be continually monitored because they represent attack vectors. That’s why understanding configuration management is critical to security hygiene. As practitioners, we need to adhere to CIS controls as they provide a critical baseline for maintaining our security framework and keeping up our integrity monitoring processes.” …
“Microsoft has started to send targeted notifications to dozens of hospitals about vulnerable public-facing VPN devices and gateways located on their network. As part of their tracking of various groups behind human-operated ransomware attacks, Microsoft has seen one of the operations known as REvil (Sodinokibi) targeting vulnerabilities in VPN devices and gateway appliances to breach a network.” https://www.bleepingcomputer.com/news/security/microsoft-is-alerting-hospitals-vulnerable-to-vpn-attacks/ “According …
http://arstechnica.com/security/2015/12/getting-a-linux-box-corralled-into-a-ddos-botnet-is-easier-than-many-think/
