PERSONAL BACKGROUND
- NAME: Michael Lynn
- BORN: September 6, 1980
- WHERE: United States
- OCCUPATION: Computer Security
July 27, 2005. Las Vegas.
Lynn came to widespread attention following a controversy that resulted from his research into a major security vulnerability of Cisco IOS, the operating system used on Cisco Systems routers and other networking equipment. The vulnerability concerned IOS’ handling of IPv6 packets and whether or not the problem could allow the routers to be exploited remotely. Despite the fact that Lynn had taken considerable care to remove as much technical detail as possible from his presentation, in order to make it more difficult for criminals to duplicate his work, Cisco and then later ISS objected to the talk, and threatened legal action just hours before the conference. Mike had quit his job at Internet Security Systems (ISS) a mere hour before his speech. ISS had been pressured by Cisco and its own customers to fire Michael Lynn if he made the speech. Black Hat had done their best to discourage him as well. Cisco and ISS even banded together to produce an alternative speech that would expose a little less of Cisco’s systems in the process. Lynn was warned by Black Hat not to give his speech and promised the organizers not to. Lynn delivered his previously scheduled presentation despite the implications, bringing him international media attention. Though there have been conflicting reports over the timing and nature of Lynn’s departure from his employer ISS, Lynn was told by ISS that he would be fired if he made his original presentation. Lynn then resigned voluntarily approximately one hour prior to delivering the original presentation as he had intended.
In it, he described a now-patched flaw in the Internetwork Operating System (IOS) software used to power Cisco’s routers, and demonstrated a buffer-overflow attack in which he took control of a router. Although Cisco was informed of the flaw by ISS and patched its firmware in April, users running older versions of the company’s software are at risk, he said.
Cisco, ISS, Michael Lynn and Black Hat sign legal accord
Michael Lynn, who had hired high-tech defense lawyer Jennifer Grannick as his attorney as he faced legal action Wednesday from his former employer ISS and Cisco, Thursday agreed to sign a court injunction. The injunction requires him to return any materials or disassembled code related to Cisco and never to discuss the materials related to the presentation he gave at the Black Hat conference on July 27.
The agreement, signed by all parties, also requires Black Hat to never disseminate a video made of Lynn’s presentation on July 27 and to deliver to Cisco any video recording made of Lynn.
According to the injunction Lynn is also forbidden from “unlawfully disassembling or reverse engineering Cisco code in the future… [and] using Cisco decompiled code currently in his possession or control for any purpose.”
A Cisco spokesman said his company is not planning any further legal action relating to Lynn’s talk. “With the capabilities of the Internet, it becomes a futile effort,” he said.
Lynn had taken considerable care to remove as much technical detail as possible from his presentation, in order to make it more difficult for criminals to duplicate his work. He showed the vulnerabilities of the Cisco IOS but there was no mentioning of any damages done other than the publicity of the breach. Although he was working at Internet Security Systems(ISS) at the time he hacked Cisco , there was no mention that he was assigned by ISS or hired by the Cisco to hack their system.
*note: Black Hat Briefings is a computer security conference that brings together a variety of people interested in information security. Representatives of federal agencies and corporations attend along with hackers.
Where is He now?
He is currently employed by Juniper Networks as a computer security expert. Juniper Networks is an American manufacturer of networking equipment. In fact, it is one of the competitors of Cisco. Lynn was hired by Juniper Networks just months after the Ciscogate controversial.