Tag: cisco
-
Russia-linked RomCom group targeted Ukrainian government agencies since late 2023
Russia-linked threat actor RomCom targeted Ukrainian government agencies and Polish entities in cyber attacks since late 2023. Cisco Talos researchers observed Russia-linked threat actor RomCom (aka UAT-5647, Storm-0978, Tropical Scorpius, UAC-0180, UNC2596) targeting Ukrainian government agencies and Polish entities in a new wave of attacks since at least late 2023. In the recent attacks, RomCom…
-
Cisco confirms ‘ongoing investigation’ after crims brag about selling tons of data
IntelBroker claims the breach impacts Microsoft, SAP, AT&T, Verizon, T-Mobile US, and more First seen on theregister.com Jump to article: www.theregister.com/2024/10/15/cisco_confirm_ongoing_investigation/
-
Cisco claimed to be compromised by IntelBroker
Tags: ciscoFirst seen on scworld.com Jump to article: www.scworld.com/brief/cisco-claimed-to-be-compromised-by-intelbroker
-
Datenverkauf im Darknet: Cisco untersucht mögliche Cyberattacke
Ein bekannter Leaker behauptet, über interne Daten von Cisco zu verfügen und will diese jetzt verkaufen. Derzeit wird der Fall untersucht. First seen on heise.de Jump to article: www.heise.de/news/Datenverkauf-im-Darknet-Cisco-untersucht-moegliche-Cyberattacke-9981995.html
-
Hackers Allegedly Selling Data Stolen from Cisco
A group of hackers reportedly sells sensitive data stolen from Cisco Systems, Inc. The breach, allegedly carried out by a collective known as IntelBroker in collaboration with EnergyWeaponUser and zjj, has raised significant concerns across the tech industry. Details of the Breach According to a post on social media platform X by user H4ckManac, the…
-
Cisco investigates breach after stolen data for sale on hacking forum
Cisco has confirmed to BleepingComputer that it is investigating recent claims that it suffered a breach after a threat actor began selling allegedly stolen data on a hacking forum. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/cisco-investigates-breach-after-stolen-data-for-sale-on-hacking-forum/
-
Intel Broker Claims Cisco Breach, Selling Stolen Data from Major Firms
Intel Broker claims a major data breach at Cisco, allegedly stealing source codes, confidential documents, and credentials from… First seen on hackread.com Jump to article: hackread.com/intel-broker-cisco-data-breach-selling-firms-data/
-
NFL and Cisco gain yardage with network and security partnership
Cisco scores contract extension with US sports body NFL to connect and protect 2024 roster of International Games in the UK, Germany, Brazil and Spain in 2025 First seen on computerweekly.com Jump to article: www.computerweekly.com/news/366613533/NFL-and-Cisco-gain-yardage-with-network-and-security-partnership
-
Ghidra data type archive for Windows driver functions
Cisco Talos is releasing a GDT file on GitHub that contains various definitions for functions and data types. First seen on blog.talosintelligence.com Jump to article: blog.talosintelligence.com/ghidra-data-type-archive-for-windows-drivers/
-
CISA Warns of Critical Fortinet Flaw as Palo Alto and Cisco Issue Urgent Security Patches
Tags: cisa, cisco, cve, cybersecurity, exploit, flaw, fortinet, infrastructure, kev, remote-code-execution, vulnerabilityThe U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Wednesday added a critical security flaw impacting Fortinet products to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation.The vulnerability, tracked as CVE-2024-23113 (CVSS score: 9.8), relates to cases of remote code execution that affects FortiOS, FortiPAM, FortiProxy, and FortiWeb.”A First seen on thehackernews.com…
-
Palo Alto Expedition: From N-Day to Full Compromise
On July 10, 2024, Palo Alto released a security advisory for CVE-2024-5910, a vulnerability which allowed attackers to remotely reset the Expedition application admin credentials. While we had never heard of Expedition application before, it’s advertised as: The purpose of this tool is to help reduce the time and efforts of migrating a configuration from…
-
Cisco warnt: Kinder erhöhen Cyberrisiko im Homeoffice
Laut Cisco erlauben rund zwei Drittel aller Eltern im Homeoffice ihren Kindern den Zugriff auf beruflich genutzte Geräte – häufig sogar unbeaufsichtigt. First seen on golem.de Jump to article: www.golem.de/news/cisco-warnt-kinder-erhoehen-cyberrisiko-im-homeoffice-2410-189661.html
-
Illumio, ColorTokens, Cisco Lead Microsegmentation Rankings
Illumio, Akamai Stay Atop Forrester Wave, While ColorTokens, Cisco Join Leaderboard. Illumio and Akamai remained atop Forrester’s microsegmentation rankings, while ColorTokens and Cisco climbed into the leader space.The microsegmentation market has expanded beyond traditional on-premises networks to address modern public cloud workloads. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/illumio-colortokens-cisco-lead-microsegmentation-rankings-a-26459
-
Mass Retail Hacks Affect Adobe Commerce and Magento Stores
4,387 Online Merchants Compromised, Including Cisco and National Geographic Stores. Thousands of online stores running Adobe Commerce and Magento software have been hacked since the summer and infected with digital payment skimmers by attackers targeting a vulnerability known as CosmicSting. While patched by Adobe in June, users also need to forcibly invalidate stolen credentials. First…
-
New MedusaLocker Ransomware Variant Deployed by Threat Actor
Cisco Talos has observed the financially motivated threat actor targeting organizations globally with a MedusaLocker ransomware variant called “BabyLockerKZ” First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/medusalocker-ransomware-deployed/
-
Sicherheitsupdates: Cisco patcht Lücken in Produkten quer durch die Bank
Neben einem kritischen Fehler kümmert sich der Netzwerkausrüster auch um einige Lücken mit mittlerem und hohem Risikograd. Patches stehen bereit. First seen on heise.de Jump to article: www.heise.de/news/Sicherheitsupdates-Cisco-patcht-Luecken-in-Produkten-quer-durch-die-Bank-9961998.html
-
Cisco is abandoning the LoRaWAN space, and there’s no lifeboat for IoT customers
Support stretches to end of 2029, no more maintenance beyond 2026 First seen on theregister.com Jump to article: www.theregister.com/2024/10/02/cisco_exiting_lorawan/
-
Threat actor believed to be spreading new MedusaLocker variant since 2022
Cisco Talos has discovered a financially motivated threat actor, active since 2022, recently observed delivering a MedusaLocker ransomware variant. Intelligence collected by Talos on tools regularly employed by the threat actor allows us to see an estimate of the amount and countries of origin of this group’s First seen on blog.talosintelligence.com Jump to article: blog.talosintelligence.com/threat-actor-believed-to-be-spreading-new-medusalocker-variant-since-2022/
-
Cisco Nexus Vulnerability Let Hackers Execute Arbitrary Commands on Vulnerable Systems
A critical vulnerability has been discovered in Cisco’s Nexus Dashboard Fabric Controller (NDFC), potentially allowing hackers to execute arbitrary commands on affected systems. This flaw, identified as CVE-2024-20432, was first published on October 2, 2024. Its CVSS score of 9.9 indicates its severe impact. Vulnerability Details The vulnerability resides in the Cisco NDFC’s REST API…
-
Critical RCE vulnerability found in OpenPLC
Tags: cisco, dos, exploit, flaw, intelligence, open-source, rce, remote-code-execution, service, threat, vulnerabilityCisco’s Talos reported critical and high-severity flaws in OpenPLC that could lead to DoS condition and remote code execution. Cisco’s Talos threat intelligence unit has disclosed details of five newly patched vulnerabilities in OpenPLC, an open-source programmable logic controller. These vulnerabilities can be exploited to trigger a denial-of-service (DoS) condition or execute remote code. OpenPLC…
-
Cisco Patches High-Severity Vulnerabilities in IOS Software
Cisco has released patches for seven high-severity vulnerabilities affecting products running IOS and IOS XE software. The post Cisco Patches High-Severity Vulnerabilities in IOS Software appeared first on SecurityWeek. First seen on securityweek.com Jump to article: www.securityweek.com/cisco-patches-high-severity-vulnerabilities-in-ios-software-2/
-
Cisco Patches High Severity Vulnerabilities In IOS
First seen on packetstormsecurity.com Jump to article: packetstormsecurity.com/news/view/36396/Cisco-Patches-High-Severity-Vulnerabilities-In-IOS.html
-
Splunk and Cisco integration moving apace
Splunk is rapidly integrating with Cisco’s technology to enable seamless transitions between their platforms while delivering advanced threat detection capabilities First seen on computerweekly.com Jump to article: www.computerweekly.com/news/366611952/Splunk-and-Cisco-integration-moving-apace
-
CVE-2024-20439 und CVE-2024-20440 – CVSS 9.8 Schwachstelle im Cisco Smart Licensing Utility
First seen on security-insider.de Jump to article: www.security-insider.de/cisco-sicherheitswarnung-kritische-schwachstellen-smart-licensing-utility-a-0940d0adb0d80e8b71058a45a7f8b73d/
-
Iranian APT UNC1860 Linked to MOIS Facilitates Cyber Intrusions in Middle East
An Iranian advanced persistent threat (APT) threat actor likely affiliated with the Ministry of Intelligence and Security (MOIS) is now acting as an initial access facilitator that provides remote access to target networks.Google-owned Mandiant is tracking the activity cluster under the moniker UNC1860, which it said shares similarities with intrusion sets tracked by Microsoft, Cisco…
-
AI Could Help Resolve IT/OT Integration Security Challenges
Security issues stemming from the integration of information technology (IT) and operational technology (OT), could be addressed through artificial intelligence (AI), although the technology could also be leveraged by malicious actors, according to a Cisco study. First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/09/ai-could-help-resolve-it-ot-integration-security-challenges/
-
IBM quietly axing thousands of jobs, source says
We did warn you, Big Blue tells The Reg, as Cisco also cuts staff as promised First seen on theregister.com Jump to article: www.theregister.com/2024/09/18/ibm_job_cuts/
-
Channel Brief: Cisco Talos Layoffs, Cynomi Expands vCISO Services on Pax8
First seen on scmagazine.com Jump to article: www.scmagazine.com/news/channel-brief-cisco-talos-layoffs-cynomi-expands-vciso-services-on-pax8