Security experts are warning of a zero-day vulnerability with Sun Microsystems’ Solaris 10 and 11 operating systems.Exploit code has been posted on the Internet, and no special tools are required to take advantage of it, according to an advisory from the SANS Institute.The problem lies within Telnet, a networking protocol. The Telnet daemon—a process that runs in the background and waits for another Telnet client to connect—can allow a hacker to log in without a password.SANS suggests a couple of solutions: Disable Telnet or limit the IP addresses that can connect to Telnet through the firewall. In the past, SANS has warned that using Telnet poses a risk because data transferred between clients may not be encrypted. Telnet is also a frequent target for port scanners.“In my opinion, no one should be running Telnet open to the Internet,” wrote Donald Smith of SANS. –Jeremy Kirk, IDG News Service Related content news UK Cyber Security Council CEO reflects on a year of progress Professor Simon Hepburn sits down with broadcaster ITN to discuss Council’s work around cybersecurity professional standards, careers and learning, and outreach and diversity. By Michael Hill Sep 27, 2023 3 mins Government Government Government news FIDO Alliance certifies security of edge nodes, IoT devices Certification demonstrates that products are at low risk of cyberthreats and will interoperate securely. By Michael Hill Sep 27, 2023 3 mins Certifications Internet Security Security Hardware news analysis Web app, API attacks surge as cybercriminals target financial services The financial services sector has also experienced an increase in Layer 3 and Layer 4 DDoS attacks. By Michael Hill Sep 27, 2023 6 mins Financial Services Industry Cyberattacks Application Security news Immersive Labs adds custom 'workforce exercising' for each organizational role With the new workforce exercising capability, CISOs will be able to see each role’s cybersecurity readiness, risk areas, and exercise progress. By Shweta Sharma Sep 27, 2023 3 mins Security Software Podcasts Videos Resources Events SUBSCRIBE TO OUR NEWSLETTER From our editors straight to your inbox Get started by entering your email address below. Please enter a valid email address Subscribe