Researchers at Leuven University (KU Leuven) have discovered the existence of millions of poorly secured so-called ‘tunnelling hosts’. Tunnelling hosts are servers or computers that act as intermediaries to connect computer networks. A total of more than four million vulnerable tunnelling hosts were found.
Is it just me or is this a nothing article?
Is says nothing about what they actually found, just a bunch of hosts forwarding GRE traffic. No details on what platforms, if a bug report or CVE was filed, nothing at all.
Yeah I agree, it was the first in my RSS feed about it, didn’t find the publication by DistriNet.
This is a better one, but I’ll keep my eye out for more info.
Edit: Sloppy of me, here’s the publication.
https://papers.mathyvanhoef.com/usenix2025-tunnels.pdf