Apt Encounters of the Third Kind

A security researcher found a critical vulnerability in a client's custom Linux reverse gateways. The gateways boot from USB media and mount an NFS share containing TLS certificates and configuration. The researcher developed a methodology to detect attackers accessing decrypted PII from within the gateways.