Skip to main content

An article from

Dive Brief

Cisco searches its gear for backdoors

Published Dec. 23, 2015

By

Justine Brown Contributing Editor

Dive Brief:

Cisco is looking for “malicious modifications” in its equipment after Juniper announced earlier this week that its ScreenOS operating system has been vulnerable for years, Network World announced.
The additional review was Cisco’s idea, said the senior director of the company’s Security and Trust Organization.
Documents stolen by Edward Snowden in 2013 said the NSA had backdoored Juniper and Cisco gear.

Dive Insight:

The company says it will release its findings in accordance with its security vulnerability policy.

Some have speculated that the malicious code Juniper is currently patching was placed there by the NSA, and that Cisco may also have been affected.

“Our additional review includes penetration testing and code reviews by engineers with deep networking and cryptography experience,” said Anthony Grieco, senior director of Cisco’s Security and Trust Organization. “We have seen none of the indicators discussed in Juniper’s disclosure. Although our normal practices should detect unauthorized software, we recognize that no process can eliminate all risk.”

After Juniper security mess, Cisco searches own gear for backdoors Network World

Filed Under: Security, Hardware & Infrastructure

CIO Dive news delivered to your inbox

Get the free daily newsletter read by industry experts

Select user consent: By signing up to receive our newsletter, you agree to our Terms of Use and Privacy Policy. You can unsubscribe at anytime.

Marco VDM via Getty Images

Not ready for AI: Enterprises grapple with data, infrastructure gaps

Businesses need better security, quality and flexibility from their data foundations to meet generative AI goals, a Hitachi Vantara report found.

By Lindsey Wilkinson • July 12, 2024
Johannes Simon via Getty Images

The EU AI Act is here: What can CIOs expect?

The act took effect Thursday, but enforcement deadlines are spread out through 2027. The act could have a similar global influence to GDPR.

By Lindsey Wilkinson • Aug. 1, 2024

CIO Dive news delivered to your inbox

Get the free daily newsletter read by industry experts

Select user consent: By signing up to receive our newsletter, you agree to our Terms of Use and Privacy Policy. You can unsubscribe at anytime.

Editors' picks

Marco VDM via Getty Images

Not ready for AI: Enterprises grapple with data, infrastructure gaps

Businesses need better security, quality and flexibility from their data foundations to meet generative AI goals, a Hitachi Vantara report found.

By Lindsey Wilkinson • July 12, 2024
Johannes Simon via Getty Images

The EU AI Act is here: What can CIOs expect?

The act took effect Thursday, but enforcement deadlines are spread out through 2027. The act could have a similar global influence to GDPR.

By Lindsey Wilkinson • Aug. 1, 2024

Latest in Security

Logging 2.0 – Why logging needs to be re-imagined in the age of AI

By Dominic Chapman, Head of Product at Axiom
Securing identities in 2025 – The future of identity governance
For IT pros, the CrowdStrike crisis was a ‘call to arms’

By Matt Ashare
CrowdStrike avoids customer exodus after triggering global IT outage

By Matt Kapko

Industry Dive is an Informa TechTarget business.

This website is owned and operated by Informa TechTarget, part of a global network that informs, influences and connects the world's technology buyers and sellers. All copyright resides with them. Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. TechTarget, Inc.'s registered office is 275 Grove St. Newton, MA 02466.

Home
- IT Strategy
- Cloud
- Security
- Big Data
- AI
- Software
- Leadership
Deep Dive
Opinion
Library
Events
Press Releases

Get CIO Dive in your inbox

The free newsletter covering the top industry headlines

Select user consent: By signing up to receive our newsletter, you agree to our Terms of Use and Privacy Policy. You can unsubscribe at anytime.