Печальная история Huawei, или "рукожопы должны страдать"... #Huawei #希望隨意
Короче, Huawei не столько злоумышленники, сколько нерадивые рукожопы, которые экономили деньги на исправлении даже обнаруженных уязвимостей.
Я бы сказал, надеясь на "Авось", но не знаю, как по-китайски, например 希望隨意...
#Huawei
#希望隨意
Отчёт об исследованиях:
Подборка "изюминок" в Twitter:
"Huawei devices had substantially more known vulnerabilities and 2-8x more potential 0-day vulnerabilities than the other devices. The Huawei devices was were only devices that contained hard-coded default credentials and hard-coded default cryptographic keys."
"On dozens of occasions, Huawei engineers disguised known unsafe functions (such as memcpy) as the "safe" version (memcpy_s) by creating wrapper functions with the "safe" name but none of the safety checks."
"Vodafone also identified backdoors in parts of its fixed-access network known as optical service nodes, which are responsible for transporting traffic over optical fibers other parts called broadband network gateways, which handle subscriber authentication & access to internet."
Сообщения
Комментариев нет:
Отправить комментарий