Vulnerable perimeter devices: a huge attack surface


Level 69
Content Creator
Malware Hunter
Aug 17, 2014
With the increase of critical gateway devices deployed to support off-premise work, companies across the world have to adapt to a new threat landscape where perimeter and remote access devices are now in the first line.

Companies lack visibility into the growing network of internet-connected services and devices that support the new work paradigm; and the avalanche of vulnerabilities reported for edge devices makes tackling the new security challenge even more difficult.

In research published today, digital threat management company RiskIQ found hundreds of thousands of fringe network or remote access solutions from Cisco, Microsoft, Citrix, or IBM, where high and critical severity security vulnerabilities were discovered.

Global internet telemetry data from the company shows a huge surface for attackers to probe hoping to find a way into the target organization.
  • F5 Big-IP - 967,437 devices
  • Citrix NetScaler Gateway - 86,773 devices
  • Palo Alto Global Protect - 61,869 devices
  • Microsoft Remote Desktop Gateway - 42,826 devices
  • Oracle WebLogic - 14,563 devices
  • Citrix ADC - 7,970 devices
  • IBM WebSphere Application Server - 7,496 devices
  • Oracle iPlanet Web Server 7.0 - 2,848 devices
  • Citrix ShareFile - 2,766 devices
  • SAP NetWeaver - 2,629 devices
  • Zoho Desktop Central - 1,988 devices
  • Cisco ASA & Firepower - 1,982 devices