Tag Archives: Old Code

Decades-Old Code Is Putting Millions of Critical Devices at Risk

by Lily Hay Newman, Wired

Nearly two decades ago, a company called Interpeak created a network protocol that became an industry standard. It also had severe bugs that are only now coming to light.

In early August, the enterprise security firm Armis got a confusing call from a hospital that uses the company’s security monitoring platform. One of its infusion pumps contained a type of networking vulnerability that the researchers had discovered in a few weeks prior. But that vulnerability had been found in an operating system called VxWorks—which the infusion pump didn’t run.

Continue reading Decades-Old Code Is Putting Millions of Critical Devices at Risk