UM Labs

Sad SACK: Linux kernel vulnerability identified by Netflix

Wednesday, 19th June 2019 | Posted in: Blog

A new Linux kernel vulnerability capable of triggering a system crash has been identified by Netflix researchers. The vulnerability is linked to the way that selective acknowledgements (SACK) are processed on network connections. The attack can be initiated remotely. Most VoIP and some UC  traffic relies on connectionless network transports and is not affected by this vulnerability, however when a device uses encryption, the connections used do expose the vulnerability….

Read More

Don’t Boil The Ocean, but make sure you can see the tidal wave!

Tuesday, 11th June 2019 | Posted in: Blog

Microsoft is joining the Mutually Agreed Norms for Routing Security (MANRS) initiative, whose primary objective is to reduce the most common threats to the Internet’s routing system. This collaboration is a step in which CSP’s can try and sort out DDOS attacks at routing levels, it is a great start. However, Cyber Security is about levels of defence over multi-levels, which usually means network, applications and then the content access…

Read More