Tag: cisco
-
Hackers deployed web shells, exploited public-facing applications in Q4
A Cisco Talos report also indicated a sharp increase in remote access tools being leveraged in ransomware.; First seen on cybersecuritydive.com Jump to article: www.cybersecuritydive.com/news/threat-actors-web-shells-exploit/739426/
-
Hackers deploy web shells, exploit public-facing applications
A Cisco Talos Q4 report also indicated a sharp increase in remote access tools being leveraged in ransomware.; First seen on cybersecuritydive.com Jump to article: www.cybersecuritydive.com/news/threat-actors-web-shells-exploit/739426/
-
Critical Cisco ISE bug can let attackers run commands as root
Cisco has fixed two critical Identity Services Engine (ISE) vulnerabilities that can let attackers with read-only admin privileges bypass authorization and run commands as root. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/critical-cisco-ise-bug-can-let-attackers-run-commands-as-root/
-
Cisco addressed two critical flaws in its Identity Services Engine (ISE)
Cisco addressed critical flaws in Identity Services Engine, preventing privilege escalation and system configuration changes. Cisco addressed multiple vulnerabilities, including two critical remote code execution flaws, tracked as CVE-2025-20124 (CVSS score of 9.9) and CVE-2025-20125 (CVSS score of 9.1), in Identity Services Engine (ISE). A remote attacker authenticated with read-only administrative privileges could exploit the…
-
Cisco stopft Sicherheitslücken in mehreren Produkten auch kritische
In mehreren Produkten hat Cisco Sicherheitslücken entdeckt und warnt in Sicherheitsmitteilungen davor. Updates stehen bereit. First seen on heise.de Jump to article: www.heise.de/news/Cisco-stopft-Sicherheitsluecken-in-mehreren-Produkten-auch-kritische-10272291.html
-
Cisco Patches Critical Vulnerabilities in Enterprise Security Product
Critical vulnerabilities in Cisco Identity Services Engine could lead to elevation of privileges and system configuration modifications. The post Cisco Patches Critical Vulnerabilities in Enterprise Security Product appeared first on SecurityWeek. First seen on securityweek.com Jump to article: www.securityweek.com/cisco-patches-critical-vulnerabilities-in-enterprise-management-product/
-
Google Cloud Platform Data Destruction via Cloud Build
A technical overview of Cisco Talos’ investigations into Google Cloud Platform Cloud Build, and the threat surface posed by the storage permission family. First seen on blog.talosintelligence.com Jump to article: blog.talosintelligence.com/gcp-data-destruction-via-cloud-build/
-
Cisco Patches Critical Vulnerabilities in Enterprise Management Product
Critical vulnerabilities in Cisco Identity Services Engine could lead to elevation of privileges and system configuration modifications. The post Cisco Patches Critical Vulnerabilities in Enterprise Management Product appeared first on SecurityWeek. First seen on securityweek.com Jump to article: www.securityweek.com/cisco-patches-critical-vulnerabilities-in-enterprise-management-product/
-
Malvertising: Cyberkriminelle klonen Website der TU Dresden
Das Threat-Intelligence-Team von Malwarebytes hat eine Malvertising-Kampagne für den VPN-Client Cisco AnyConnect entdeckt. Opfer werden auf vertrauenswürdige Seiten geleitet, fangen sich dort aber einen Remote-Access-Trojaner ein. Auch die Webseite der TU Dresden wurde wohl von den Cyberkriminellen geclont. Keyword cisco … First seen on borncity.com Jump to article: www.borncity.com/blog/2025/02/06/malvertising-cyberkriminelle-klonen-website-der-tu-dresden/
-
Cisco Anyconnect: Hacker klonen Webseite der TU Dresden und verbreiten Malware
Mutmaßlich russische Angreifer wollten Nutzern von Cisco Anyconnect eine Malware unterjubeln. Mit einem Trick sollte die Masche unentdeckt bleiben. First seen on golem.de Jump to article: www.golem.de/news/cisco-anyconnect-hacker-klonen-webseite-der-tu-dresden-und-verbreiten-malware-2502-193091.html
-
Cisco IOS SNMP Vulnerabilities Allow Attackers to Launch DoS Attacks<<
Cisco has disclosed multiple vulnerabilities in its Simple Network Management Protocol (SNMP) subsystem affecting Cisco IOS, IOS XE, and IOS XR software. These flaws, identified as high-severity, could allow an authenticated remote attacker to trigger Denial-of-Service (DoS) conditions, disrupting network operations. Key Details According to the Cisco Security Advisory ID: cisco-sa-snmp-dos-sdxnSUcW, the vulnerabilities stem from improper…
-
Cisco Patches Critical ISE Vulnerabilities Enabling Root CmdExec and PrivEsc
Cisco has released updates to address two critical security flaws Identity Services Engine (ISE) that could allow remote attackers to execute arbitrary commands and elevate privileges on susceptible devices.The vulnerabilities are listed below -CVE-2025-20124 (CVSS score: 9.9) – An insecure Java deserialization vulnerability in an API of Cisco ISE that could permit an authenticated, remote…
-
AI Defense – Cisco launcht Sicherheitsplattform für KI-Anwendungen
First seen on security-insider.de Jump to article: www.security-insider.de/cisco-launcht-sicherheitsplattform-fuer-ki-anwendungen-a-ea07e2c81e6089eb2d460437cb5f6897/
-
CVSS Score 9.9 – Kritische Schwachstelle in Verwaltung von Cisco Meeting
First seen on security-insider.de Jump to article: www.security-insider.de/-sicherheitsluecke-cisco-meeting-management-a-79d4be5455d07c12bc63a0a670484619/
-
DeepSeek Compared to ChatGPT, Gemini in AI Jailbreak Test
DeepSeek’s susceptibility to jailbreaks has been compared by Cisco to other popular AI models, including from Meta, OpenAI and Google. The post DeepSeek Compared to ChatGPT, Gemini in AI Jailbreak Test appeared first on SecurityWeek. First seen on securityweek.com Jump to article: www.securityweek.com/deepseek-compared-to-chatgpt-gemini-in-ai-jailbreak-test/
-
Cisco Finds DeepSeek R1 Highly Vulnerable to Harmful Prompts
DeepSeek R1, a cost-efficient AI model, achieves impressive reasoning but fails all safety tests in a new study… First seen on hackread.com Jump to article: hackread.com/cisco-finds-deepseek-r1-vulnerable-harmful-prompts/
-
Whatsup Gold, Observium and Offis vulnerabilities
Cisco Talos’ Vulnerability Research team recently disclosed three vulnerabilities in Observium, three vulnerabilities in Offis, and four vulnerabilities in Whatsup Gold. These vulnerabilities exist in Observium, a network observation and monitoring system; Offis DCMTK, a collection of libraries and applications implementing DICOM (Digital Imaging and Communications First seen on blog.talosintelligence.com Jump to article: blog.talosintelligence.com/whatsup-gold-observium-offis-vulnerabilities/
-
New phishing campaign targets users in Poland and Germany
An ongoing phishing campaign, presumably by an advanced persistent threat (APT) actor, is seen dropping a new backdoor on victim systems enabling stealthy C2 operations.The backdoor, which Cisco’s Talos Intelligence Unit is tracking as TorNet, was found connecting victim machines to the decentralized and anonymizing TOR network for C2 communications.”Cisco Talos discovered an ongoing malicious…
-
TorNet Backdoor Exploits Windows Scheduled Tasks to Deploy Malware
Cisco Talos researchers have identified an ongoing cyber campaign, active since mid-2024, deploying a previously undocumented backdoor known as >>TorNet.
-
New TorNet backdoor seen in widespread campaign
Cisco Talos discovered an ongoing malicious campaign operated by a financially motivated threat actor targeting users, predominantly in Poland and Germany. First seen on blog.talosintelligence.com Jump to article: blog.talosintelligence.com/new-tornet-backdoor-campaign/
-
Hackers Use Hidden Text Salting to Bypass Spam Filters and Evade Detection
In the latter half of 2024, Cisco Talos identified a significant increase in email threats leveraging >>hidden text salting,
-
Hidden Text Salting Disrupts Brand Name Detection Systems
A new phishing tactic has been identified by Cisco Talos, using hidden text salting to evade email security measures First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/hidden-text-salting-disrupts-brand/
-
Patch now: Cisco fixes critical 9.9-rated, make-me-admin bug
No in-the-wild exploits “¦ yet First seen on theregister.com Jump to article: www.theregister.com/2025/01/23/cisco_fixes_critical_bug/
-
Cisco fixes ClamAV vulnerability with available PoC and critical Meeting Management flaw
Cisco has released patches for a critical privilege escalation vulnerability in Meeting Management (CVE-2025-20156) and a heap-based buffer overflow flaw (CVE-2025-20128) … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2025/01/23/cisco-clamav-cve-2025-20128-meeting-management-cve-2025-20156/
-
Cisco Fixes Critical Vulnerability in Meeting Management
The network equipment giant urged customers to patch immediately First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/cisco-critical-vulnerability/
-
Cisco patches antivirus decommissioning bug as exploit code surfaces
Cisco has patched a denial-of-service (DoS) vulnerability affecting its open-source antivirus software toolkit, ClamAV, which already has a proof-of-concept (PoC) exploit code available to the public.Identified as CVE-2025-20128, the vulnerability stems from a heap-based buffer overflow in the Object Linking and Embedding 2 (OLE2) decryption routine, enabling unauthenticated remote attackers to cause a DoS condition…
-
Cisco Warns of Critical Privilege Escalation Vulnerability in Meeting Management Platform
Cisco has issued a security advisory regarding a critical privilege escalation vulnerability found in Cisco Meeting Management. The vulnerability is tied to the REST API component of the platform, and if exploited, it could allow an attacker to escalate their privileges from a low-level authenticated user to an administrator. First seen on thecyberexpress.com Jump to…
-
Cisco Patches Critical Vulnerability in Meeting Management
Cisco has released patches for three vulnerabilities, including a critical privilege escalation bug and a DoS flaw for which exploit code exists. The post Cisco Patches Critical Vulnerability in Meeting Management appeared first on SecurityWeek. First seen on securityweek.com Jump to article: www.securityweek.com/cisco-patches-critical-vulnerability-in-meeting-management/
-
Kritische Sicherheitslücke in Meeting Management
Cisco warnt vor einer kritischen Sicherheitslücke in Meeting Management sowie Schwachstellen in Broadworks und ClamAV. First seen on heise.de Jump to article: www.heise.de/news/Cisco-Kritische-Sicherheitsluecke-in-Meeting-Management-10253499.html
-
Cisco addresses a critical privilege escalation bug in Meeting Management
Cisco addressed a critical flaw in its Meeting Management that could allow it to gain administrator privileges on vulnerable instances. Cisco released security updates to fix a critical flaw, tracked as CVE-2025-20156 (CVSS score of 9.9) affecting its Meeting Management. A remote, authenticated attacker can exploit the vulnerability to gain administrator privileges on affected instances.…