Hello, welcome to the Thursday, January 27, 22 edition of the Sansonet Storm Center's Stormcast. My name is Johannes Ulrich. I'm recording from Jacksonville, Florida.

There are a couple of things you just shouldn't expose on the internet. This may be, for example, your networked storage devices like your QNAPs,

analogy, and the like your homemade Wordpress websites, and of course any kind of system

that is used to manage your server, like for example the HP integrated lights out management

interface or ILO, which is very similar

to Dell's DRAC system.

And of course, that's another thing that you shouldn't expose.

So Jan took a look at how many of these systems are actually exposed and using a couple

different techniques, like, for example, searching on

Google as well as on Shodan. He found about 20,000 servers exposed to the internet. This is rather

unfortunate because these are servers that are usually sold to more professional environments.

These are not home user systems.

And over the years, they have been a number of critical vulnerabilities

that essentially allow the complete takeover of these servers without any credentials.

So please, please double check that any system like this, and like I said, it's not

just restricted to HP's implementation, Dell and others, any kind of IPMI interface and

such, should be in the same category, should never be exposed to the public internet. And yes, this isn't

new. And actually, someone on Twitter asked whether or not this changed due to the pandemic.

And Jan did sort of a quick historic search and didn't really find a significant change in the number of exposed devices pre versus post pandemic.

And Apple today did its usual, well, patch everything a day.

WatchOS is now 8.4 iOS and iPadOS is 15.3.

Same for TVOS.

...