<img alt="" src="https://secure.weed6tape.com/193471.png" style="display:none;">
90-Day CloudHSM Free Trial – Experience Securosys CloudHSM without commitment.
Start your Free Trial
Products & Solutions
Products & Solutions
Explore our portfolio of cutting-edge cybersecurity solutions, centered around our flagship Hardware Security Modules (HSMs). From encryption and key management to secure access and authentication, our products ensure robust protection for your most critical data and systems.
menu icon
Hardware Security Module (HSM)
HSM Overview What is an HSM? Primus HSM X Cyber Vault Primus HSM X-Series Primus HSM E-Series Primus HSM S-Series Primus HSM Blockchain
menu icon
Cloud Security
Securosys CloudHSM Cloud Console What is CloudHSM? CloudHSM Service Offerings Integrated Technologies HashiCorp Vault S365 DKE - add-in for Microsoft 365 Bring Your Own Key (BYOK) External Key Store (XKS) Proxy for AWS
menu icon
Additional Products and Services
Decanus Terminal Transaction Security Broker (TSB) Key Attestation Smart Key Attributes (SKA) Docker Image Security
Partners
Support
Support
menu icon
Support
Online Documentation Support Portal System Status Trainings
finance-institution-colourful
What is ...?
What is an HSM? What is CloudHSM? What is BYOK? What is SIC system?
About
About
Learn more about our mission, explore career opportunities, and access our resources. Discover how we’re shaping the future of cybersecurity and how you can be part of it.
menu icon
Securosys SA
About Us Events News Career
menu icon
Resources
Online Documentation Blog Articles Stories and Paper Video Gallery
document-lock-b&w
Certifications
Security Certifications Safety & Compliance Certifications Company Certification
Contact us
  • There are no suggestions because the search field is empty.
Home Blog How to avoid Zero-Day attacks in networking equipment

How to avoid Zero-Day attacks in networking equipment

By Andreas Curiger
Apr 10, 2019

"The question is not if you get hacked, but when," said Robert Rogenmoser, CEO Securosys, at the Swiss Economic Forum on 06/09/2016 in Interlaken.

The detection of software vulnerabilities in network components is a difficult task. Moreover, whoever has identified such a software bug will thoroughly consider what to do with this newly acquired piece of knowledge. Ideally, this researcher would inform the software manufacturer to develop and deploy a patch in a timely fashion to eliminate this vulnerability quickly. Afterwards, he might present the findings to the scientific community or inform the media accordingly.

Unfortunately, not all researchers stick to this process. The interest in vulnerabilities that would allow mounting zero-day attacks is and always has been substantial. Until a few years ago, it was up to the intelligence community exclusively to team up with the relevant export-oriented technology industry, as we have learned from Ed Snowden’s revelations. Meanwhile, however, law enforcement and prosecutors on behalf of terror prevention have been showing increased interested in the exploitation of security holes as well. Once they are in possession of tools that allow them to penetrate into protected networks of suspicious subjects, it is also in their best interest to keep such vulnerabilities confidential.

Recent revelations informed us about previously unknown vulnerabilities in devices from US-based companies Cisco, Fortinet and Juniper, and China-based Topsec. Apparently, the malicious code for the exploits stems from the American intelligence agency NSA.

Many CEOs and CIOs might argue: "So what? Why should I bother whether the NSA or Europol would read my data? In fact we have nothing to hide!"

This might well be true, but the question is not whether you have something to hide, but rather, whether you possess something worthwhile to protect. In fact, the alleged NSA code for exploiting unknown vulnerabilities has been offered for sale by an unknown group called “Shadow Brokers”. These tools are interesting to criminals, who are constantly looking for ways to penetrate protected networks to gather confidential information and to profit from them, too.

If you want to protect against zero-day attacks here is our advice: Stay away from state-infiltrated hardware and software. Rather bet on products for which security is not an add-on feature of complex software, but part of a sound architecture, and which is verifiably reliable.

You will find that kind of products at Securosys –for the sustained protection of your most valuable data.

Andreas Curiger, CTO/CSO Securosys

All Blog Articles
By Martina Alig Dec 04, 2024

Preparing for the Quantum Leap: A Panel on Post-Quantum Cryptographic Readiness

Explore insights from this panel discussion on quantum computing risks and opportunities, the urgency of PQC, and strategies for building secure IT systems Read more By Martina Alig Oct 01, 2024

In Conversation with Florian Schütz: Shaping Switzerland's Cybersecurity Strategy and Future

Join R. Rogenmoser and F. Schütz, as they discuss the nation’s cybersecurity strategy, coordination challenges, and future threats including AI, cloud, and quantum computing. Read more By Robert Rogenmoser Sep 12, 2024

How SASE and HSM Enhance Cloud Security Together

Learn how combining SASE and HSM strengthens cloud security by protecting encryption keys and enabling secure remote access. Read our Blog article! Read more By Robert Rogenmoser Aug 20, 2024

Securosys: Ready for the Post-Quantum Cryptography Era

Discover how Securosys is leading the way in post-quantum cryptography with the launch of the Primus X Cyber Vault, designed to safeguard your data against future quantum threats. Learn how to transition seamlessly to NIST's newly released quantum-safe algorithms and ensure your organization is ready for the post-quantum era. Read more