Network Break 414: 230 Juniper Vulnerabilities, Should Cisco Patch An EOL Router, T-Mobile Takes Weeks To Spot Breach
Summary: Take a Network Break! This week has kind of a security theme (or lack thereof), as we discuss Juniper Networks announcing security advisories on more than 230 vulnerabilities. Serious flaws in a handful of Cisco small-business routers have been identified, but because the router are end of life (EOL) Cisco isn’t patching them. Reports say Avaya is edging toward bankruptcy to restructure its debt.<br> Microsoft, Google, and other big companies slash tens of thousands of jobs, PacketFabric and Unitas merge in the network service provider market, T-Mobile loses 37 million customer records after an attacker spent weeks exploiting vulnerable APIs, and SpaceX promises to work with the National Science Foundation to minimize interference that Starlink satellites can cause with ground-based astronomical observations.<br> Get links to all these stories below.<br> Sponsor: Nokia<br> We’re sponsored in part by Nokia and its Digital Sandbox, part of Nokia’s Fabric Services System for data center network automation. To get more details about how the Digital Sandbox enables intent-based networking, listen to the May 9th Tech Byte we recorded with Nokia and go to<a href="https://nokia.ly/fabric-services-system"> nokia.ly/fabric-services-system</a> to learn more.<br> Show Links:<br> <a href="https://www.scmagazine.com/news/incident-response/juniper-starts-the-year-listing-more-than-230-vulnerabilities" target="_blank" rel="noopener">Juniper starts the year listing more than 230 vulnerabilities</a> – SC Magazine<br> <a href="https://supportportal.juniper.net/s/global-search/%40uri?language=en_US#sort=%40sfcec_community_publish_date_formula__c%20descending&numberOfResults=50&f:ctype=%5BSecurity%20Advisories%5D" target="_blank" rel="noopener">Juniper Security Advisories</a> – Juniper Networks<br> <a href="https://www.theregister.com/2023/01/13/cisco_smb_critical_router_flaw_no_fix/" target="_blank" rel="noopener">Cisco warns it won’t fix critical flaw in small business routers despite known exploit</a> – The Register<br> <a href="https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sbr042-multi-vuln-ej76Pke5" target="_blank" rel="noopener">Cisco Small Business RV016, RV042, RV042G, and RV082 Routers Vulnerabilities</a> – Cisco Systems<br> <a href="https://www.bizjournals.com/triangle/news/2023/01/17/more-avaya-layoffs-as-bankruptcy-speculation-grows.html" target="_blank" rel="noopener">More Avaya layoffs as bankruptcy speculation grows</a> – Triangle Business Journal<br> <a href="https://app.quotemedia.com/data/downloadFiling?webmasterId=90423&ref=117169321&type=HTML&symbol=AVYA&companyName=Avaya+Holdings+Corp.&formType=8-K&formDescription=Current+report+pursuant+to+Section+13+or+15%28d%29&dateFiled=2023-01-13&CK=1418100" target="_blank" rel="noopener">Avaya Form 8K Filing</a> – Securities and Exchange Commission<br> <a href="https://www.wsj.com/articles/avaya-veers-toward-bankruptcy-filing-11671144276" target="_blank" rel="noopener">Avaya Veers Toward Bankruptcy Filing</a> – Wall Street Journal (paywall)<br> <a href="https://www.channelfutures.com/business-models/avaya-ceo-financial-issues-temporary-recovery-coming-soon" target="_blank" rel="noopener">Avaya CEO: Financial Issues Temporary, Recovery Coming Soon</a> – Channel Futures<br> <a href="https://www.avaya.com/en/about-avaya/newsroom/pr-us-220809/" target="_blank" rel="noopener">Avaya Reports Selected Additional Preliminary Third Quarter Fiscal 2022 Financial Results and Provides Business Updates</a> – Avaya<br> <a href="https://www.bloomberg.com/news/articles/2023-01-20/google-cutting-12-000-jobs-in-6-slash-to-global-workforce?fromMostRead=true#xj4y7vzkg" target="_blank" rel="noopener">Google to Cut 12,000 Jobs in 6% Slash to Global Workforce</a> – Bloomberg<br> <a href="https://blog.pragmaticengineer."></a>
