silversurfer
Level 85
Thread author
Verified
Honorary Member
Top Poster
Content Creator
Malware Hunter
Well-known
- Aug 17, 2014
- 10,200
A cluster of vulnerabilities known as Ripple20 pose a major threat to IT environments, according to new research by a Seattle enterprise cyber-analytics company.
The Ripple20 threat is a series of 19 vulnerabilities found in a low-level TCP/IP software library developed by Treck Inc. called the Treck networking stack. The library is used by device manufacturers across a host of different industries, including utilities, academia, government, and healthcare.
The vulnerability series (CVE-2020-11901) was first discovered by the JSOF threat research organization in June of this year.
Yesterday, a threat research team at ExtraHop issued a warning over the potential impact of Ripple20 after finding out that 35% of IT environments are vulnerable to the threat.
"The ExtraHop threat research team studied customer data and discovered vulnerable software in one out of every three IT environments," wrote researchers. "With industry average dwell times hovering around 56 days, these devices are a ticking time bomb if left alone."
The researchers predicted that this exploit will be widely used by attackers as an easy backdoor into networks the world over.