How can this be?
The VPN 3000 concentrator management software shows that FTP is not enabled, but port 21 is open when I scan the device and try to logon, but fail. I do not have admin rights to it; a network staff member showed me that it was supposed to be not enabled. I monitor an IDS 4250 and reported that the IDS sig 3171 was triggered over 200 times by a European internet IP. I believe that the FTP service is compromised. What is the worst case scenario?
Is the device owned?