Categories

Editor's Choice
Multimedia, Videos
AI & ML
Analogue, Mixed Signal, LSI
Circuit & System Protection
Computer/Embedded Technology
Design Automation
DSP, Micros & Memory
Edge Computing & IIoT
Electronics Technology
Enclosures, Racks, Cabinets & Panel Products
Events
Interconnection
Manufacturing / Production Technology, Hardware & Services
News
Opto-Electronics
Passive Components
Power Electronics / Power Management
Programmable Logic
Smart Home Automation
Switches, Relays & Keypads
Telecoms, Datacoms, Wireless, IoT
Test & Measurement





News



Print this page printer friendly version

Airlink Connection Manager security advisor

26 July 2023 News

Sierra Wireless recently received reports of malicious actors attempting to compromise Airlink Connection Manager (ACM) instances that are deployed insecurely with exposed SSH and using the default administrative credentials. Sierra Wireless security guidance for the configuration of ACM instances strongly recommends changing the administrative credentials prior to operational deployment, and limiting the exposure of SSH to secure management networks only.

As the frequency of compromise or compromise attempts appears to be increasing, Sierra Wireless strongly recommends that all customers review their ACM configuration and logs.

All versions of ACM may be vulnerable if they are deployed with SSH accessible from an insecure network such as the public Internet, and are using insecure credentials, including default, weak, or publicly known credentials. If an attacker can connect to an ACM instance and authenticate, they will gain full administrative control of the instance, allowing them to modify the configuration or access any secrets stored on the device.

Sierra Wireless recommends the following actions to secure your ACM instances:

• Ensure the administrative password, along with all other passwords, are changed from the defaults. All passwords should comply with accepted recommendations for strong passwords, such as those provided by Microsoft.

• Set external firewall rules to prevent access to SSH from insecure or untrusted networks such as the public Internet, preventing untrusted connections.

• Monitor ACM and firewall logs for unauthorised access attempts from unknown sources, and implement appropriate rules to block such attempts.




Share this article:
Share via emailShare via LinkedInPrint this page

Further reading:

From the editor’s desk: Windows 10’s end of support arrives bringing industrial risks
Technews Publishing News
By the time you read this column, support for non-LTSC editions of Windows 10 will have ended, officially having their last day on 14 October 2025. This means no more security patches, feature updates, ...

Read more...
Electronic News Digest
News
A brief synopsis of current global news relating to the electronic engineering fields with regards to company finances, general company news, and engineering technologies.

Read more...
Correction: Marijana Abt, Rebound Electronics
News
      In the August issue of Dataweek magazine, the article titled ‘Celebrating innovation, leadership, and the next generation’ featured Marijana Abt, senior account manager at Rebound Electronics. Owing ...

Read more...
Trasna and RF Design announce distribution agreement
RF Design News
Trasna and RF Design have announced a strategic distribution agreement for cellular IoT solutions which will ensure seamless availability of Trasna’s cellular connectivity solutions.

Read more...
Local partnership puts demand-side management to work in South Africa
News
Sensor Networks has partnered with European demand-side management specialist ThermoVault to bring advanced load-shifting capabilities to one of the country’s biggest energy consumers: the household geyser.

Read more...
Hisense SA launches year-long learnership programme for youth
News
Hisense SA’s manufacturing plant in Atlantis recently welcomed 100 young people from the local community, to embark on a year-long learnership and skills development programme.

Read more...
Comtest hosts channel partners
Comtest News
Comtest, together with FLUKE, recently set the stage for an unforgettable afternoon as they welcomed over 80 Channel Partners to their annual celebration of excellence.

Read more...
RS South Africa and Qhubeka empower learners through the gift of mobility
RS South Africa News
Through its bicycle donation initiative, 354 bicycles have been distributed to date, empowering students to access education more easily by reducing the physical and economic barriers posed by long daily commutes.

Read more...
Deca and SST announce strategic collaboration
News
The collaboration provides customers with a modular, memory-centric foundation for advanced multi-die architectures.

Read more...
Specialised Exhibitions transitions to new name: Montgomery Group Africa
News
As part of a strategic move to streamline operations, strengthen regional alignment, and support long-term growth, Specialised Exhibitions has transitioned to a new name: Montgomery Group Africa.

Read more...










While every effort has been made to ensure the accuracy of the information contained herein, the publisher and its agents cannot be held responsible for any errors contained, or any loss incurred as a result. Articles published do not necessarily reflect the views of the publishers. The editor reserves the right to alter or cut copy. Articles submitted are deemed to have been cleared for publication. Advertisements and company contact details are published as provided by the advertiser. Technews Publishing (Pty) Ltd cannot be held responsible for the accuracy or veracity of supplied material.

Publications by Technews

»  Dataweek Electronics & Communications Technology
»  Electronics Buyers' Guide (EBG)

»  Hi-Tech Security Solutions
»  Hi-Tech Security Business Directory

»  Motion Control in Southern Africa
»  Motion Control Buyers' Guide (MCBG)

»  South African Instrumentation & Control
»  South African Instrumentation & Control Buyers' Guide (IBG)



© Technews Publishing (Pty) Ltd | All Rights Reserved