Cisco launches code review after Juniper’s spyware disclosure
Cisco Systems has launched an internal code review following Juniper’s disclosure last week of unauthorized spying code found in its enterprise firewall products.
So far, “we have no indication of unauthorized code in our products,” wrote Anthony Grieco, senior director of Cisco’s Security and Trust Organization, in a blog post Monday.
The code review was initiated by Cisco and not the result of contact by law enforcement, Grieco wrote.
Juniper said on Thursday an internal audit uncovered code that could allow secret remote access and also compromise encrypted VPN connections. The code was found in some versions of an operating system called ScreenOS that powers firewall devices.