TechTarget

NISCC warns firms over IPSec hack

The British government’s National Infrastructure Security Co-ordination Centre (NISCC) has warned companies using IPSec virtual...

The British government’s National Infrastructure Security Co-ordination Centre (NISCC) has warned companies using IPSec virtual private network encryption technology that they risk having their communications hacked.

IPSec is widely used by companies to protect their networks. NISCC says “only moderate effort” is needed by attackers to breach IPSec protected networks and grab plain text encrypted in the communications.

NISCC said potentially any configurations of IPSec that use Encapsulating Security Payload (ESP) technology are vulnerable. NISCC has rated the risk as “high”. 

NISCC said an attacker can modify sections of the IPsec packet to retrieve a plain text version of the communication. The NISCC has published a range of solutions to close the potential hack. 

The full advisory can be found here:

http://www.niscc.gov.uk/niscc/docs/al-20050509-00386.html?lang=en

CW+

Features

Enjoy the benefits of CW+ membership, learn more and join.

Read more

0 comments

Oldest 

Forgot Password?

No problem! Submit your e-mail address below. We'll send you an email containing your password.

Your password has been sent to:

-ADS BY GOOGLE

SearchCIO

SearchSecurity

SearchNetworking

SearchDataCenter

SearchDataManagement

Close