“Juniper, a major manufacturer of networking equipment, said on Thursday it found spying code planted in certain models of its firewalls, an alarming discovery that echoes of state-sponsored tampering. The internal review uncovered two problems. One could allow remote administrative access to a ScreenOS device over telnet or SSH. The second vulnerability can allow an attacker who can monitor VPN traffic to decrypt it. VPNs are encrypted connections between a user and another computer and are often used by companies to allow secure remote access to their systems. Disturbingly, Juniper wrote that ‘there is no way to detect that this vulnerability was exploited.'”
http://www.pcworld.com/article/3016915/security/juniper-warns-of-spying-code-in-firewalls.html