"Not a single of these breaches would have been possible if even basic hardening had been applied to the devices, or a vulnerability management program had been in place to detect exposed services," he said.
"In this case, simply turning off the service will mitigate this risk, but without a process to do this for any unused or unnecessary service, soon there is a next mitigation, and a next, and a next. You can only win this battle by preventive measures."
Cisco switch flaw lead to attacks on critical infrastructure