A spike in internet probes has been detected targeting devices from Juniper Networks, Cisco Systems, and Palo Alto Networks, raising concerns among security experts about the vulnerabilities these devices may present. In particular, a significant number of attempts were made to access a Juniper Networks router using its default username and password. Johannes Ullrich, a cybersecurity expert with the SANS Institute, emphasized the importance of changing these factory settings, criticizing the ongoing use of default credentials in 2025 for high-end equipment.
Ullrich noted that the surge in scans targeted the Juniper’s Session Smart Networking Platform (SSR), particularly the default account associated with it. He pointed out that alerts have been circulating for admins to update their credentials to protect against such probing, which appears to be conducted by a botnet aimed at exploiting these systems.
Meanwhile, Cisco faced distinct challenges as a vulnerability had been discovered in its Smart Licensing Utility software last September, which exposed a fixed password to potential exploitations. Recent attempts to take advantage of this unpatched software have come to light, prompting Cisco to reiterate the necessity for customers to update their systems to remediate the vulnerability.
Cybersecurity experts have long urged manufacturers to eliminate the use of default passwords. Solutions are available, such as assigning unique passwords to devices upon receipt or requiring users to create their own credentials during the initial setup. As for Palo Alto Networks, researchers have reported an increase in attempts to log into their PAN-OS GlobalProtect portals, suggesting a planned effort to probe for weaknesses that could lead to targeted exploitation.
This pattern of behavior, marked by thousands of unique IP addresses attempting to locate vulnerable systems, particularly in the United States and Canada, indicates a systematic approach by threat actors. Organizations utilizing products from these manufacturers are advised to enhance their security protocols actively and safeguard their login portals from potential breaches.
Welcome to DediRock, your trusted partner in high-performance hosting solutions. At DediRock, we specialize in providing dedicated servers, VPS hosting, and cloud services tailored to meet the unique needs of businesses and individuals alike. Our mission is to deliver reliable, scalable, and secure hosting solutions that empower our clients to achieve their digital goals. With a commitment to exceptional customer support, cutting-edge technology, and robust infrastructure, DediRock stands out as a leader in the hosting industry. Join us and experience the difference that dedicated service and unwavering reliability can make for your online presence. Launch our website.