<![CDATA[I'm putting together a webinar on modern vulnerability management and I'm REALLY trying to drive a point home]]>I'm putting together a webinar on modern vulnerability management and I'm REALLY trying to drive a point home

So naturally, I bought 3 old Sonicwall firewalls

]]>https://board.circlewithadot.net/topic/6c2242f5-5ba0-4994-90ef-5ad2fd0ed784/i-m-putting-together-a-webinar-on-modern-vulnerability-management-and-i-m-really-trying-to-drive-a-point-homeRSS for NodeFri, 01 May 2026 11:51:24 GMTTue, 28 Apr 2026 19:11:37 GMT60<![CDATA[Reply to I'm putting together a webinar on modern vulnerability management and I'm REALLY trying to drive a point home on Thu, 30 Apr 2026 16:43:14 GMT]]>@gordondraper in other words, we're worried about Mythos, but folks aren't patching their network infrastructure and that's one of the main ways they're getting popped

]]>https://board.circlewithadot.net/post/https://infosec.exchange/users/sawaba/statuses/116494656777672003https://board.circlewithadot.net/post/https://infosec.exchange/users/sawaba/statuses/116494656777672003Thu, 30 Apr 2026 16:43:14 GMT<![CDATA[Reply to I'm putting together a webinar on modern vulnerability management and I'm REALLY trying to drive a point home on Thu, 30 Apr 2026 16:42:20 GMT]]>@gordondraper the context you're missing is that a third of ransom payments went to Akira, who is just successfully using one Sonicwall vuln over and over for the past 2 years.

250,000+ vulnerabilities out there, but harm/losses only come from a few dozen every year.

I bought the Sonicwalls to demonstrate how the attackers think:

  1. find a reliable exploit
  2. are there lots of exposed targets?
  3. if yes, start hitting them and profit
  4. next week: are there still lots of exposed targets?
  5. if yes, GOTO 3
]]>https://board.circlewithadot.net/post/https://infosec.exchange/users/sawaba/statuses/116494653236465832https://board.circlewithadot.net/post/https://infosec.exchange/users/sawaba/statuses/116494653236465832Thu, 30 Apr 2026 16:42:20 GMT<![CDATA[Reply to I'm putting together a webinar on modern vulnerability management and I'm REALLY trying to drive a point home on Thu, 30 Apr 2026 07:56:52 GMT]]>@sawaba worst thing is probably that there is a second hand market for these... is someone buying and installing them? IMO they should be treated as the asbestos of the 2000 🙂

]]>https://board.circlewithadot.net/post/https://infosec.exchange/users/gnyman/statuses/116492586986740539https://board.circlewithadot.net/post/https://infosec.exchange/users/gnyman/statuses/116492586986740539Thu, 30 Apr 2026 07:56:52 GMT<![CDATA[Reply to I'm putting together a webinar on modern vulnerability management and I'm REALLY trying to drive a point home on Tue, 28 Apr 2026 21:01:02 GMT]]>@sawaba confused, yes there will be vulns there, but how does that lead to vuln management process… identification, prioritisation triage, remediation… how does having a “blinkin lights” lead you to a satisfactory outcome? Or is that the point… patches can fail due to badly written patches that don’t fully remediate the problem?

]]>https://board.circlewithadot.net/post/https://infosec.exchange/users/gordondraper/statuses/116484345863184893https://board.circlewithadot.net/post/https://infosec.exchange/users/gordondraper/statuses/116484345863184893Tue, 28 Apr 2026 21:01:02 GMT