Hackers Find Security Hole In BlackBerry Enterprise Server
Research In Motion says it's developed fixes for the vulnerability and can recommend temporary precautions until customers are able to update their software.
Research In Motion's BlackBerry Enterprise Server product may be vulnerable to denial-of-service attacks, according to a group of German hackers, called Phenoelit, that identifies security flaws.
Phenoelit found a problem in the way the server's BlackBerry Router handles Server Routing Protocol packets. An attacker could cause denial of service by sending "specially crafted" packets to the router, according to a vulnerability note posted on the U.S. Computer Emergency Readiness Team's Web site. The result could be disrupted communications between the BlackBerry Enterprise Server and BlackBerry devices, the note states.
In a prepared statement, Research In Motion said it "has already developed software fixes for the issues identified by [the group] and although there have been no customer reports of any actual problems, RIM has also provided temporary precautionary measures that can be taken in the mean time until customers are able to implement the software updates."
RIM asks companies to make sure their BlackBerry Enterprise Server and BlackBerry Router are located behind the corporate firewall. RIM calls it an "internal-only vulnerability" that can be caused by an inside attacker.
We welcome your comments on this topic on our social media channels, or [contact us directly] with questions about the site.
2017 State of IT ReportIn today's technology-driven world, "innovation" has become a basic expectation. IT leaders are tasked with making technical magic, improving customer experience, and boosting the bottom line -- yet often without any increase to the IT budget. How are organizations striking the balance between new initiatives and cost control? Download our report to learn about the biggest challenges and how savvy IT executives are overcoming them.
Infographic: The State of DevOps in 2017Is DevOps helping organizations reduce costs and time-to-market for software releases? What's getting in the way of DevOps adoption? Find out in this InformationWeek and Interop ITX infographic on the state of DevOps in 2017.