Did You Realize Your UPS Can Be a Network Vulnerability?

Someone on the (empty just now) chat had commented on Liebert UPS' for cameras. Liebert, as of 2014, still shipped Telnet enabled on their control units. And they use BACNET. English translation: they're not secure, they could be potentially attacked through the network.

FYI UPS can kill you. Under certain conditions you can fake a UPS power-loss notice to your VMS or your Disk array...

* **** ** ** **** ****. ****, **'* ******* ******** box ***** ** * ****** ****** *** ******** ***** ******* security *** ***** * ****** ******* ***** **** ** ******** interface ** ***** **** ********** ********* ***** ***** **'* ***********. And *****'* *** ***** (**** **** ******* - ****) ***** the ******* ******* "***** **" ** * **** ****** ** using ****** ** ****** *** **** **** *** *** *** and ******* *** *********** ***** **** ***** *** ********* *** of *** ********.

*'* **** ******** ** **** ** *** ********* *** ****** I **** ******** *** * ******* ****** "*******". *** *** tell ***** *********** **** *** ***** **** * ******* *********** when **** *** * ** **** *** * ******* ****. Yes, ** *******, ******* *** **** ******* **** ****** **** "non-person ******" ********** ** *** *** ********* **** ********** **** to ** ****** *** ** ***** ******* ***** **** *** and ****.

Login to read this IPVM discussion.
Why do I need to log in?
IPVM conducts unique testing and research funded by member's payments enabling us to offer the most independent, accurate and in-depth information.

******** **** *** ******* *** ** * ******* *************.

* **** *** ******** ** ***** *** *** ** * denial ** ******* ****** ****** ******* *** ***. ****.

*********, **** ** **** ******** ******* ***** ******** (**** * MAC *******) **'* **** *** **** *********** ** ****** *** possible ****** *********. **** *** *** **** ********* ** *** opaque ***** ******* *** ** ** *** ******** *** **** the ***-****/******. ** *** **** ******* *** ******* *** ***** sleep ****** ******* ****'** *** ******* **-**** *** ******* *** appropriate **********. *** **** *** ***'* **** ****'* ******* ** some ****** ******.. ****** ******.

** *** **** ******* *** ******* *** ***** ***** ****** knowing ****'** *** ******* **-**** *** ******* *** *********** **********.

**** *** ******* ******* ****** *** ******* ** ***************?

*** *****'* *** ***** (**** **** ******* - ****) ***** the ******* ******* "***** **" ** * **** ****** ** using ****** ** ****** *** **** **** *** *** *** and ******* *** *********** ***** **** ***** *** ********* *** of *** ********.

***, * ***** * *** **** ** **. *****!