New cryptojacking botnet uses SMB exploit to spread to Windows systems

Posted by & filed under Ειδοποιήσεις.

A new cryptojacking botnet is spreading across compromised networks via multiple methods that include the EternalBlue exploit for Windows Server Message Block (SMB) communication protocol. The attacker’s goal is to mine for Monero (XMR) cryptocurrency and enslave as many systems as possible for this task for increased profit. Complex campaign Researchers at Cisco Talos named… Read more »

Cisco fixes critical pre-auth flaws allowing router takeover

Posted by & filed under Ειδοποιήσεις.

Cisco today has released security updates to address critical remote code execution (RCE), authentication bypass, and static default credential vulnerabilities affecting multiple router and firewall devices that could lead to full device takeover. Cisco also issued a security update to patch a privilege escalation vulnerability in the Cisco Prime License Manager software. According to the… Read more »

Cisco fixes severe flaws in Webex Meetings for Windows, macOS

Posted by & filed under Ειδοποιήσεις.

Cisco today released security updates to address two high severity vulnerabilities found in the Cisco Webex Meetings Desktop App for Windows and macOS that could allow unprivileged attackers to run programs and code on vulnerable machines. Cisco Webex Meetings is an online meeting and video conferencing software that makes it easy to schedule and join meetings. The platform… Read more »

5 High Impact Flaws Affect Cisco Routers, Switches, IP Phones and Cameras

Posted by & filed under Ειδοποιήσεις.

Several Cisco-manufactured network equipment have been found vulnerable to five new security vulnerabilities that could allow hackers to take complete control over them, and subsequently, over the enterprise networks they power. Four of the five high-severity bugs are remote code execution issues affecting Cisco routers, switches, and IP cameras, whereas the fifth vulnerability is a… Read more »

Expert released PoC exploits for recently disclosed Cisco DCNM flaws

Posted by & filed under Ειδοποιήσεις.

A researcher has publicly released some proof-of-concept (PoC) exploits and technical details for flaws in Cisco’s Data Center Network Manager (DCNM). Early this month, Cisco released security updates for its Cisco’s Data Center Network Manager (DCNM) product that address several critical and high-severity vulnerabilities. All the vulnerabilities were reported to Cisco through Trend Micro’s Zero Day Initiative (ZDI) and Accenture’s iDefense service by… Read more »