site stats

U.S. Congress to federal agencies: You have two weeks to tally your backdoored Juniper kit

<!–U.S. Congress to federal businesses: You Have Got two weeks to tally your backdoored Juniper package found in its firewalls working its ScreenOS.</p> <p></span></p> <p> Credit:<span></p> <p> Juniper<br /> </span></p> </figcaption> </figure> <section class="deck"> <h2>the house of Representatives wants to gauge the impact of the recent Juniper ScreenOS backdoors on Government departments and businesses</h2> </section> <div class="modal eml-friend-wrapper" id="emailModal"> <div class="eml-ty eml-friend-success"> <i class="ss-icon ss-delete" /></p> <h3>Thanks</h3> <p class="msg-sent">Your message has been sent.</p> </p></div> <div class="eml-friend-error"> <i class="ss-icon ss-delete" /></p> <h3>Sorry</h3> <p class="msg-sent">There was an error emailing this page.</p> </p></div> </div> <section class="bodee"> <p>$(‘#” + slotName + “‘).responsiveAd(screenSize:’971 1115’, scriptTags: []);”;<br /> var adDivString = “</p> <p>” + adString + “</p> <p>“;</p> <p> placementDiff = applyInsert($(this), adDivString);<br /> if (debug)<br /> console.log(“Just positioned an Advert and the placementDiff is: ” + placementDiff);</p> <p> placementTarget = cumulativeHeight + placementDiff + interModuleHeight + adHeightBuffer;</p> <p> else<br /> var moduleDivString = “”;<br /> var elementId = “drr-mod-“+moduleCounter;<br /> moduleDivString = “”;<br /> modules.push(elementId);</p> <p> placementDiff = applyInsert($(this), moduleDivString);<br /> if (debug)<br /> console.log(“Simply placed a module and the placementDiff is: ” + placementDiff);</p> <p> placementTarget = cumulativeHeight + placementDiff + interModuleHeight + moduleHeightBuffer;<br /> moduleCounter++;</p> <p> loopCounter++;</p> <p> // Avoid inserting Components too quickly because of non-Large figures inflating the cumulative Top<br /> if ($(this).is(“Determine”) && !$(this).is(“Figure.Huge”))<br /> cumulativeHeight += grafHeight;</p> <p> else<br /> cumulativeHeight += $(this).Height() + grafHeight;</p> <p> );</p> <p> // clone Related Stories module to come in after eighth para in article physique for Mobile breakpoint show<br /> var $relatedStories = $(‘.Related-promo-wrapper’);<br /> if ($relatedStories.size)<br /> var $relatedStoriesClone = $relatedStories.clone();<br /> $relatedStoriesClone.insertAfter( “#drr-container > p:eq(7)”); </p> <p> // For Cell most effective, Place Ad after second paragraph.<br /> if (firstMobileAdHtml)<br /> $(firstMobileAdHtml).insertAfter(“#drr-container > p:eq(1)”);</p> <p> var $insiderPromo = $(‘.insider-promo-wrapper’);<br /> if ($insiderPromo.size)<br /> var $insiderPromoClone = $insiderPromo.clone();<br /> $insiderPromoClone.insertAfter( “#drr-container > p:eq(1)”);</p> <p> //Place left side Element<br /> cumulativeHeight = 0;<br /> var leftPlacementTarget = tagHeight = leftPlacementTarget)<br /> if (debug)<br /> console.log(“congratulations… we have now handed the preliminary Start point”);</p> <p> if (leftPlacementIndex == null)<br /> //it can be Not excellent enough to Not be a left Avoid – it additionally shouldn’t be a </p> <p> with an straight away previous small or medium picture left Avoid.<br /> if (!isLeftAvoid($(this)) && noPrevFigures($(this)) )<br /> leftPlacementIndex = $(this).index();<br /> $leftPlacementElement = $(this);<br /> leftPlacementLookaheadStart = cumulativeHeight;<br /> if (debug)<br /> console.log(“is not a left Keep Away From and no prev figures. ########## set placementIndex (“+leftPlacementIndex+”) and lookaheadStart (“+leftPlacementLookaheadStart+”) ##########”);</p> <p> else<br /> if (debug)<br /> console.log(“is a left Keep Away From or has previous figures. proceed”);</p> <p> else<br /> if (debug)<br /> console.log(“#### leftPlacementIndex already set to “+leftPlacementIndex+”. looking IN ADVANCE…”);</p> <p> //Now Not null; has been set<br /> if ((cumulativeHeight – leftPlacementLookaheadStart) > leftIntervalHeight)<br /> if (debug)<br /> console.log(“###### THRESHOLD REACHED. LOOKAHEAD COMPLETE. End ###### (cumulativeHeight – leftPlacementLookaheadStart) (“+(cumulativeHeight-leftPlacementLookaheadStart)+”) > leftIntervalHeight (“+leftIntervalHeight+”).”);</p> <p> return false;<br /> else<br /> if (debug)<br /> console.log(“threshold Now Not reached: (cumulativeHeight – leftPlacementLookaheadStart) (“+(cumulativeHeight-leftPlacementLookaheadStart)+”) tags<br /> if (!(isLeftAvoid($(this)) && ($(this).hasClass(‘small’)<br /> );</p> <p> if (leftPlacementIndex != null && elementNotNearEnd($leftPlacementElement, leftPixelWindow))<br /> if (debug)<br /> console.log(” insert into index “+leftPlacementIndex);</p> <p> $(“#drr-container”).children().eq(leftPlacementIndex).sooner than(“</p> <p>“);</p> <p> IDG.GPT.trackOmniture();</p> <p> // Add Right rail module content material<br /> for (var i=0; i” + adString + “</section> </article> </section> </div> <p>“;</p> <p> perform getEpoParams() </p> <p> /**<br /> * @param jqo Unique jquery object Goal<br /> * @param divString The div to be inserted.<br /> * @return Difference in Peak between Original placement Goal and remaining Target.<br /> * Exams first 6 Parts for an allowable placement (600 pixel window).<br /> * If none, Test local for Parts that are not Proper avoids.<br /> * If none, Situation Part ahead of present Target.<br /> */<br /> function applyInsert(jqo, divString)<br /> if (debug)<br /> console.log(“applyInsert at top and jqo index is: ” + jqo.index());</p> <p> for (var i=0; i 0)<br /> children = $(“#drr-container”).children().slice(jqo.index(), allowElement.index() );</p> <p> else<br /> youngsters = $(“#drr-container”).youngsters().slice(allowElement.index(), jqo.index());</p> <p> if (youngsters != null)<br /> youngsters.EACH AND EVERY(function(i)<br /> if (debug)<br /> console.log(“About so as to add this Part’s Peak to heigh diff offset”);<br /> console.log($(this));</p> <p> Height += $(this).Peak() + grafHeight;<br /> );</p> <p> if (offset 300)<br /> if (debug)<br /> console.log(“isRightAvoid: found pre. return proper”);</p> <p> return authentic;</p> <p> if (“Determine”) && jqo.hasClass(‘Huge’))<br /> if (debug)<br /> console.log(“isRightAvoid: discovered Figure.Massive return genuine”);</p> <p> return real;</p> <p> if (“Figure”) && jqo.hasClass(‘medium’) && jqo.hasClass(‘inline’))<br /> if (debug)<br /> console.log(“isRightAvoid: discovered Determine has Classification medium and inline.”);</p> <p> return proper;</p> <p> if (‘div’) && jqo.hasClass(‘Table-wrapper’))<br /> if (debug)<br /> console.log(“isRightAvoid: discovered div with Category Table-wrapper”);</p> <p> return real;</p> <p> if (‘apart’))<br /> if (jqo.hasClass(‘sidebar’) && !jqo.hasClass(‘medium’))<br /> if (debug)<br /> console.log(“isRightAvoid: discovered aside with Category sidebar, with out Class medium”);</p> <p> return proper;</p> <p> if (jqo.hasClass(‘statsTable’))<br /> if (debug)<br /> console.log(“isRightAvoid: found aside with Classification statsTable”);</p> <p> return true;</p> <p> if (jqo.hasClass(‘download-asset’))<br /> if (debug)<br /> console.log(“isRightAvoid: found Class download-asset return true”);</p> <p> return real;</p> <p> if (jqo.hasClass(‘tableLarge’))<br /> if (debug)<br /> console.log(“isRightAvoid: discovered Type tableLarge return true”);</p> <p> return proper;</p> <p> if (jqo.hasClass(‘reject’))<br /> if (debug)<br /> console.log(“isRightAvoid: found Type reject. return true”);</p> <p> return actual;</p> <p> if (‘Table’) && jqo.hasClass(‘scorecard’))<br /> if (debug)<br /> console.log(“isRightAvoid: discovered div with Class scorecard”);</p> <p> return genuine;</p> <p> return false;</p> <p> // Return authentic if Part has Category ‘reject’: is not going to Location drr modules/advertisements next to these Parts<br /> operate isRightReject(jqo)<br /> console.log(“in isRightReject”);<br /> if (jqo != null)<br /> if (jqo.hasClass(“reject”))<br /> if (debug)<br /> console.log(“isRightReject: found ‘reject’ Category”);</p> <p> return real;</p> <p> return false;</p> <p> return false;</p> <p> // Returns genuine if Peak of all Elements after this one is more than 500; false otherwise<br /> operate elementNotNearEnd(Component, pixelWindow)<br /> if (pixelWindow == null)<br /> pixelWindow = 500;</p> <p> if (Component == null)<br /> return false;</p> <p> var remainingHeight = Zero;<br /> var youngsters = $(“#drr-container”).youngsters().slice(Component.index());<br /> if (kids == null)<br /> return false;</p> <p> children.EVERY(function(i)<br /> remainingHeight += $(this).Height();<br /> );<br /> if ( remainingHeight > pixelWindow)<br /> return actual;</p> <p> else<br /> if (debug)<br /> console.log(“Component too just about Finish. Closing Peak is: ” + remainingHeight + ” and window is ” + pixelWindow); </p> <p> return false;</p> <p> /**<br /> * Return authentic if need to Avoid this Component when putting left module.<br /> */<br /> operate isLeftAvoid(jqo)<br /> if (“Figure”))<br /> if (debug)<br /> console.log(“isLeftAvoid: found Figure. return authentic”);</p> <p> return actual;</p> <p> if (“aside.pullquote”))<br /> if (debug)<br /> console.log(“isLeftAvoid: discovered pullquote. return authentic”);</p> <p> return true;</p> <p> if (“pre”))<br /> if (debug)<br /> console.log(“isLeftAvoid: found pre. return true”);</p> <p> return genuine;</p> <p> if (“div.gist”))<br /> if (debug)<br /> console.log(“isLeftAvoid: found github code block. return actual”);</p> <p> return genuine;</p> <p> if (“aside”) && jqo.hasClass(“sidebar”) && jqo.hasClass(“medium”))<br /> if (debug)<br /> console.log(“isLeftAvoid: discovered medium sidebar. return actual”);</p> <p> return proper;</p> <p> if (jqo.hasClass(“statsTable”))<br /> if (debug)<br /> console.log(“isLeftAvoid: found Classification statsTable. return authentic”);</p> <p> return authentic;</p> <p> return false;</p> <p> /**<br /> * return genuine if there aren’t any figures ahead of the Target placement that would possibly bleed down into placement Part<br /> */<br /> function noPrevFigures($originalTarget)<br /> var targetIndex = $originalTarget.index();<br /> var numElementsLookBack = 5;<br /> var figureIndex = null;<br /> var figureHeight = null;<br /> var startIndex = targetIndex – numElementsLookBack </p> <div id="drr-container"> <p>Round two dozen U.S. Govt departments and federal agencies are being wondered by using the U.S. Congress on whether they had been using backdoored Juniper Network Safety appliances.</p> <p>In December, Juniper Networks announced that it had revealed unauthorized code introduced to ScreenOS, the working machine that runs on its NetScreen Community firewalls. The rogue code, which remained undetected for 2 years or extra, could have allowed faraway attackers to achieve administrative get entry to to the prone units or to decrypt VPN connections.</p> <p>The U.S. House of Representatives’ Committee on Oversight and Govt Reform desires to resolve the impact that this difficulty had on Executive companies and how the affected organizations spoke back to the incident.</p> <p>The Committee despatched letters on Jan. 21 to the Department of Defense, the Health Division, the State Department, the Securities and Alternate Commission (SEC), the Nuclear Regulatory Commission, NASA, the Social Security Administration, USAID and plenty of different Govt businesses.</p> <p><a href="" target="new">The letters ask the recipients to identify whether they used devices operating the affected ScreenOS versions, to give an explanation for how they learned in regards to the considerations and whether they took any corrective movements earlier than Juniper launched patches and to specify after they utilized the corporate’s patches.</p> <p>The wondered organizations have best two weeks, except Feb. 4, to reply and ship the precise documents, an awfully tight time frame giving that “the time frame covered via this request is from January 1, 2009 to the current.”</p> <p>Determining whether any division of a Govt Division or company used a susceptible Juniper appliance for any time period may prove troublesome, especially if accurate inventories haven’t been stored. For Example, last yr, because of inaccurate stock records, the internal Income Carrier did not comprehend whether or not 1,300 of its computer systems had been upgraded faraway from Windows XP, which was once retired by Microsoft in April 2014.</p> <p>Security researchers estimate that the VPN backdoor used to be offered into ScreenOS in August 2012 and the administrative get entry to one in late 2013.¬†Juniper has yet to reveal who and the way brought the unauthorized code to ScreenOS and the incident is reportedly being investigated by means of the FBI.</p> <aside class="nativo-promo tablet desktop" id="" /> <p>It’ll also be interesting to look if the Committee on Oversight and Govt Reform is best interested in this explicit case, or will make identical inquiries going forward. In The End, intentional or unintended backdoor-like vulnerabilities — similar to hidden administrative money owed with arduous-coded, static passwords — are regularly present in networking merchandise from quite a few carriers, and a few of them are doubtless utilized by Government companies.</p> </div> <div class="byline vcard author end-byline"> <p><img class="bylineImage imgId100258922 " src="" alt="Lucian Constantin" /></p> <p> <!-- end .author-info --></p> </div> <p><!-- blx4 #1218 blox4.html --></p> <div class="article-intercept"> <a href=""><br /> <i class="ss-icon ss-navigateright" /><em> From CIO:</em> 8 Free Online Lessons to Grow Your Tech Talents<br /> </a></p> </div> <p> <!-- /.bodee --></p> <section id="funnel"> <section class="popular-brand-cols"> <section class="popular-col"><!-- /.promo --><br /> <!-- ./promo newsletter --></p> </section> <section class="brand-col"> </section> </section> <section class="featured-col"><!-- blx4 #937 blox4.simple --></p> </section> </section> <p> <!-- /role=main --><!-- /#page-wrapper --></p> <footer> <section class="brand"><span class="logo">InfoWorld</span><br /> <span class="tagline"> </span></p> <p> <span class="follow"><br /> <label>Observe us</label><br /> </span></p> </section> <section class="topics"> <nav id="ft1" /> <nav id="ft2" /></section> <section class="about"> </section> <section class="copyright"> <div class="wrapper"> <p>Copyright ¬© 1994 – 2016 InfoWorld, Inc. All rights reserved.</p> <div class="network"> <div id="network-selector"> <p>Discover the IDG Network <i class="ss-icon tick">descend</i></p> </p></div> <p><!-- /#network-selector --> </div> <p><!-- /.network --> </div> <p><!-- /.wrapper --><br /> </section> </footer> <p><!-- Begin welcome ad overlay - gpt-overlay position --><br /> <!-- End welcome ad overlay - gpt-overlay position --></p> <p> <!-- Begin gpt-skin/gpt-pin/inread --></p> <p> <!-- End gpt-skin/gpt-pin/inread --> </p> <p><!-- Begin BlueKai Tag --></p> <p><!-- CryptoJS --></p> <p><!-- End BlueKai Tag --></p> <p><!-- BEGIN Krux Control Tag for InfoWorld --></p> <p><!-- END Krux Controltag --></p> <p><!-- START Nielsen Online SiteCensus? V6.0 --><br /> <!-- COPYRIGHT 2010 Nielsen Online --></p> <p><!-- END Nielsen Online SiteCensus? V6.0 --></p> <p><!-- SiteCatalyst code version: H.26.2. Copyright 1996-2013 Adobe, Inc. All Rights Reserved More info available at --></p> <p><img src="" height="1" width="1" border="0" alt="" /><!--/DO NOT REMOVE/--><br /> <!-- End SiteCatalyst code version: H.26.2. --></p></div> <p><br /> <br /><a href="">Supply link </a></p> <div class="clear"></div> </div><!-- /entry --> <div id="comments"> <p> You must be logged in to post a comment <a href=""> Login </a> </p> </div><!-- #comments --> </div><!-- /main --> <div id="sidebar"> <div class="sidebarinner"> </div><!-- .sidebarinner --> </div><!-- /sidebar --> </div><!-- /container --></div><!-- end of wrapper --> <div id="footer"> <div id="foo_widget1"> <div id="flickr-widget-3" class="widget flickr_widget"><div class="widgetinner"><h3 class="widgettitle">Flickr Photo Stream</h3> <script type="text/javascript" src=""></script><div class="clear"></div></div></div> </div> <div id="foo_widget2"> <div id="recent-posts-3" class="widget widget_recent_entries"><div class="widgetinner"> <h3 class="widgettitle">Recent Posts</h3> <ul> <li> <a href="">Lottery good causes income down 15% as players shun draws</a> </li> <li> <a href="">FBI’s McCabe ‘has an Ohr problem,’ will not testify on Tuesday, source says</a> </li> <li> <a href="">Birth-control coverage fight faces key hearing in California</a> </li> <li> <a href="">Swimming Canada Bans Coach Convicted of Sexual Assault</a> </li> <li> <a href="">Arkansas panel clears way for new Ten Commandments marker</a> </li> </ul> </div></div> </div> </div> <div id="footer_data"> <ul class="footerpages"> <li class="first"><a href="" title="Great Today News">Home</a></li> <li class="page_item page-item-6"><a href="">Privacy Policy</a></li> <li class="page_item page-item-195"><a href="">Contact Us</a></li> <li class="page_item page-item-198"><a href="">Video Gallery</a></li> <li class="page_item page-item-201"><a href="">Sitemap</a></li> <li><a rel="nofollow" href="">RSS</a></li> <li class="right"><a href="#top" title="Great Today News" rel="home"><strong>↑</strong> Great Today News</a></li> </ul> <div class="clear"></div> <p id="footer-left-side"> <a href="" title="Great Today News" rel="home">Great Today News</a> </p><!-- #site-info --> <p id="footer-right-side"> <a href="">Log in</a> - Designed by <a href="" title="Today News">Today News</a> <script type='text/javascript' src=''></script> <script type='text/javascript'> /* <![CDATA[ */ var wpcf7 = {"apiSettings":{"root":"http:\/\/\/wp-json\/contact-form-7\/v1","namespace":"contact-form-7\/v1"},"recaptcha":{"messages":{"empty":"Please verify that you are not a robot."}},"cached":"1"}; /* ]]> */ </script> <script type='text/javascript' src=''></script> <script type='text/javascript' src=''></script> </p> <!-- #footer-right-side --> </div><!-- /footer_data --> <div class="hide"> <div id="adv_here"> <h3 class="widgettitle">Widgetized Section</h3> <p>Go to Admin » appearance » Widgets » and move a widget into Advertise Widget Zone</p> </div> </div> <!-- Quantcast Tag --> <script type="text/javascript"> var _qevents = _qevents || []; (function() { var elem = document.createElement('script'); elem.src = (document.location.protocol == "https:" ? "https://secure" : "http://edge") + ""; elem.async = true; elem.type = "text/javascript"; var scpt = document.getElementsByTagName('script')[0]; scpt.parentNode.insertBefore(elem, scpt); })(); _qevents.push({ qacct:"p-XSTdT3wyH_FGD" }); </script> <noscript> <div style="display:none;"> <img src="//" border="0" height="1" width="1" alt="Quantcast"/> </div> </noscript> <!-- End Quantcast tag --> </body> </html> <!-- Performance optimized by W3 Total Cache. Learn more: Page Caching using disk: enhanced Served from: @ 2017-12-13 05:12:35 by W3 Total Cache -->