According to analysis by firmware security firm Eclypsium, 7,799 HPE iLO (HPE's Integrated Lights-Out) server baseboard management controllers (BMCs) are exposed to the internet and most do not appear to be running the latest version of the firmware. But the problem doesn't stop there.
  • X_CliOP
    2·
    3 years ago

    I don’t think iDrac are much better, though, in that regard.

    There have been and there will be many stories about these BMCs, unfortunately. One thing seems for sure: they should be in an isolated network or even better: unplugged.