Instantly rip out and substitute our safety {hardware} • Graham Cluley

[ad_1]

Barracuda: Immediately rip out and replace our security hardware

The URL ought to have given away that issues had been critical.

https://www.barracuda.com/firm/authorized/esg-vulnerability

Filed under "Legal"
Barracuda Networks filed the safety advisory below “Authorized”

After which there was the very eager try to underline the agency’s dedication to securing your information… they undoubtedly didn’t need you to overlook that.

Barracuda friendly

We’re dedicated to securing your information

The large pleasant letters jogged my memory – slightly aptly – of the well-known phrases “Don’t panic!” on the entrance of the “HitchHiker’s Information to the Galaxy”…

However in case you had been feeling a way of panic, I most likely couldn’t blame you, as a result of safety agency Barracuda Networks is warning individuals of a safety vulnerability in its E-mail Safety Gateway (ESG) equipment.

However greater than that, Barracuda is taking the weird step for a community safety vendor of telling its prospects to bodily take away and decommission its {hardware}.

ACTION NOTICE: Impacted ESG home equipment have to be instantly changed no matter patch model stage. You probably have not changed your equipment after receiving discover in your UI, contact help now ([email protected]).

Barracuda’s remediation advice presently is full substitute of the impacted ESG.

That’s proper. Barracuda is just not telling you to use a patch to the equipment that scans your incoming and outgoing electronic mail for malware. They need you to tear it out and substitute it as an alternative.

Signal as much as our free publication.
Safety information, recommendation, and ideas.

Clearly hackers have managed to take advantage of safety vulnerabilities on the Barracuda E-mail Safety Gateway equipment to such an extent that any patch merely isn’t as much as the job of kicking them out.

There are more likely to be 10,000+ Barracuda ESG home equipment in use world wide. And it seems malicious exploitation of weak Barracuda ESG home equipment has been happening since at the very least October 2022.

No marvel Barracuda is getting some authorized recommendation on tips on how to talk this to its prospects.

“Don’t panic?”

Discovered this text fascinating? Observe Graham Cluley on Twitter or Mastodon to learn extra of the unique content material we submit.


Graham Cluley is a veteran of the cybersecurity trade, having labored for quite a lot of safety firms because the early Nineties when he wrote the primary ever model of Dr Solomon’s Anti-Virus Toolkit for Home windows. Now an unbiased analyst, he commonly makes media appearances and is an worldwide public speaker on the subject of cybersecurity, hackers, and on-line privateness.
Observe him on Twitter, Mastodon, Bluesky, or drop him an electronic mail.



[ad_2]

Leave a Comment

Your email address will not be published. Required fields are marked *