SANS Internet Storm Center Stormcast Podcast Discusses Security of Nano KVMs and SNMP Trap Vulnerability

The SANS Internet Storm Center Stormcast podcast from January 6, 2026, hosted by Johannes Ullrich from Jacksonville, Florida, discusses the security of nano KVMs, low-cost remote access devices (starting at $35) that provide physical control equivalent to a local connection. These devices, popular since 2025, are often exposed on the Internet, posing risks similar to those of IoT devices. Ullrich recommends using Tailscale, a VPN designed for dynamic networks, to secure their access. A GitHub tool, Tail Snitch, is mentioned for auditing Tailscale configurations and detecting around 50 potential issues, such as misconfigured systems acting as routers. The podcast also highlights a critical vulnerability (CVSS score 9.8) in the SNMP trap daemon, which can be exploited for remote code execution. This open-source software, widely used for SNMP data collection, can compromise internal network monitoring systems. The vulnerability has not been widely covered, according to Ullrich. https://www.youtube.com/watch?v=KtR6dzeuc3k