December 6, 2023 at 10:48AM The Shadowserver Foundation reports a surge in device hacks linked to new vulnerabilities in Cisco IOS XE. SecurityWeek shared the news in a post titled “Exploitation of Recent Cisco IOS XE Vulnerabilities Spikes.” Here are the clear takeaways from the meeting notes provided: 1. The Shadowserver Foundation has issued a … Read more
October 30, 2023 at 11:15PM Public exploit code for the critical Cisco IOS XE vulnerability (CVE-2023-20198) is now available, which has been used to hack tens of thousands of devices. Cisco has released patches for most IOS XE software releases, but internet scans show that thousands of systems are still compromised. Researchers have provided details … Read more
October 17, 2023 at 09:20AM Attackers have exploited a critical zero-day bug to compromise and infect Cisco IOS XE devices with malicious implants. Threat intelligence company VulnCheck found thousands of compromised hosts. Cisco has advised administrators to disable the vulnerable HTTP server feature and look for breach indicators. A patch is not yet available. Key … Read more