SNMP Security Concerns

SNMP Security Concerns

SNMP Security

SNMP Exploit

SNMP, or Simple Network Management Protocol, is a widely used protocol for managing and monitoring devices on IP networks. It is commonly used in enterprise networks to manage and monitor routers, switches, servers, and other network devices. Although SNMP is a valuable tool for network management, it can also create potential security risks if not properly configured.

One of the major risks associated with SNMP is the use of default community strings. These are pre-defined passwords that are used to authenticate SNMP requests and are often left unchanged by network administrators. As a result, Threat Actors can easily access a network’s devices by guessing or using commonly used default community strings. Recently, a vulnerability (CVE-2022-20918) in SNMP access controls for Cisco FirePOWER Software for Adaptive Security Appliance (ASA) FirePOWER module, Cisco Firepower Management Center (FMC) Software, and Cisco Next-Generation Intrusion Prevention System (NGIPS) Software could allow an unauthenticated, remote attacker to perform an SNMP GET request using a default credential. 

Another security concern with SNMP is the potential for unauthenticated read and write access to network devices. If SNMP is not properly configured, Threat Actors can alter device configurations, causing disruptions to network services.

SNMP-based attacks have occurred in the past, such as in 2017 when malware called Mirai used SNMP to compromise and control IoT devices, leading to large-scale DDoS attacks. In 2019, a vulnerability in the SNMP implementation of Cisco’s Adaptive Security Appliance (ASA) software was exploited, allowing Threat Actors to gain unauthorized access to networks.

To protect against SNMP-related risks, network administrators must regularly review and update SNMP configurations, including changing default community strings and properly authenticating SNMP requests. Using secure versions of SNMP, such as SNMPv3, can also provide additional protection. By taking these precautions, organizations can ensure that their networks are protected against potential SNMP-based attacks.

While automated vulnerability scanning can be useful for identifying SNMP vulnerabilities, manual penetration testing services will provide better results in terms of depth and overall coverage. Automated testing may not always account for the nuances of a specific implementation, and as a result, may produce false positives or miss vulnerabilities altogether. Manual testing, on the other hand, is performed by experienced penetration testers who can identify vulnerabilities specific to an organization’s environment, providing a more comprehensive evaluation of security risks.

At Netragard, we can help protect against SNMP vulnerabilities and other cyber threats with our manual penetration testing services. Contact us today to learn more about how we can help secure your network.

Blog Posts

Karen Huggins

Chief Financial, HR and Admin Officer
Karen joined the Netragard team in 2017 and oversees Netragard’s financial, human resources as well as administration functions. She also provides project management support to the operations and overall strategy of Netragard.
Prior to joining Netragard, she worked at RBC Investor Services Bank in Luxembourg in the role of Financial Advisor to the Global CIO of Investor Services, as well as several years managing the Financial Risk team to develop and implement new processes in line with regulatory requirements around their supplier services/cost and to minimize the residual risk to the organization.
With over 20 years of experience in finance with global organizations, she brings new perspective that will help the organization become more efficient as a team. She received her Bachelor of Finance from The Florida State University in the US and her Master of Business Administration at ESSEC Business School in Paris, France.

Philippe Caturegli

Chief Hacking Officer
Philippe has over 20 years of experience in information security. Prior to joining Netragard, Philippe was a Senior Manager within the Information & Technology Risk practice at Deloitte Luxembourg where he led a team in charge of Security & Privacy engagements.

Philippe has over 10 years of experience in the banking and financial sector that includes security assessment of large and complex infrastructures and penetration testing of data & voice networks, operating systems, middleware and web applications in Europe, US and Middle East.

Previously, Philippe held roles within the information system security department of a global pharmaceutical company in London. While working with a heterogeneous network of over 100,000 users across the world and strict regulatory requirements, Philippe gained hands-on experience with various security technologies (VPN, Network and Application Firewalls, IDS, IPS, Host Intrusion Prevention, etc.)

Philippe actively participates in the Information Security community. He has discovered and published several security vulnerabilities in leading products such as Cisco, Symantec and Hewlett-Packard.

He is a Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH), PCI Qualified Security Assessors (PCI-QSA), OSSTMM Professional Security Analyst (OPSA), OSSTMM Professional Security Tester (OPST), Certified in Risk and Information Systems Control (CRISC)and Associate Member of the Business Continuity Institute (AMBCI).

Adriel Desautels

Chief Technology Officer
Adriel T. Desautels, has over 20 years of professional experience in information security. In 1998, Adriel founded Secure Network Operations, Inc. which was home to the SNOsoft Research Team. SNOsoft gained worldwide recognition for its vulnerability research work which played a pivotal role in helping to establish today’s best practices for responsible disclosure. While running SNOsoft, Adriel created the zeroday Exploit Acquisition Program (“EAP”), which was transferred to, and continued to operate under Netragard.
In 2006, Adriel founded Netragard on the premise of delivering high-quality Realistic Threat Penetration Testing services, known today as Red Teaming. Adriel continues to act as a primary architect behind Netragard’s services, created and manages Netragard’s 0-day Exploit Acquisition Program and continues to be an advocate for ethical 0-day research, use and sales.
Adriel is frequently interviewed as a subject matter expert by media outlets that include, Forbes, The Economist, Bloomberg, Ars Technica, Gizmodo, and The Register. Adriel is often an invited keynote or panelist at events such as Blackhat USA, InfoSec World, VICELAND Cyberwar, BSides, and NAW Billion Dollar CIO Roundtable.