New on LowEndTalk? Please Register and read our Community Rules.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
HP iLO and the newly discovered iLOBleed Rootkit
If someone still thinks KVM belongs on a public ip without protection, there‘s a new rootkit - even the newest ILO on Gen10 servers from HP is vulnerable. ILO5 can be protected, lower versions not.
https://www.secplicity.org/2021/12/29/hp-ilo-and-the-newly-discovered-ilobleed-rootkit/
Comments
xref https://lowendtalk.com/discussion/176350/new-ilobleed-rootkit-targeting-hp-enterprise-servers-with-data-wiping-attacks
Argh, didn‘t see it
https://threats.amnpardaz.com/en/2021/12/28/implant-arm-ilobleed-a/