#cve-2018-0171

[ follow ]
#cisco-smart-install #fsb-center-16 #critical-infrastructure #synful-knock #clickjacking #password-managers
fromTheregister
4 days ago

US puts $10M bounty on Russians accused of infra attacks

The US State Department has put a $10 million bounty on the heads of three Russians accused of being intelligence agents hacking America's critical infrastructure - primarily via old Cisco kit, it seems. The alert directly connects them to reports of the Russian Federal Security Service's (FSB) Center 16 - aka Berserk Bear - accused of using a flaw (CVE-2018-0171) Cisco patched in 2018, but attackers recently exploited it in the Salt Typhoon hacking campaign,
Information security
Information security
fromThe Hacker News
1 week ago

Weekly Recap: Password Manager Flaws, Apple 0-Day, Hidden AI Prompts, In-the-Wild Exploits & More

Effective cybersecurity requires strategic alignment with business, trust, and geopolitics rather than relying solely on technical tools.
Information security
fromSecuritymagazine
2 weeks ago

Russia-Sponsored Cyber Attack Campaign Targets Networking Devices, Critical Infrastructure

Russia-linked group targets end-of-life, unpatched Cisco devices exploiting CVE-2018-0171; automation-driven lifecycle and vulnerability management is essential to mitigate risk.
Information security
fromComputerWeekly.com
2 weeks ago

Moscow exploiting seven-year-old Cisco flaw, says FBI | Computer Weekly

Russian-linked threat actors exploit CVE-2018-0171 in Cisco Smart Install to gain unauthorized access, perform reconnaissance, and enable DoS or remote code execution on devices.
fromTheregister
2 weeks ago

FBI: Russian FSB spies exploiting a 7-year-old Cisco bug

In the past year, the FBI detected the actors collecting configuration files for thousands of networking devices associated with US entities across critical infrastructure sectors,
Information security
Information security
fromThe Hacker News
2 weeks ago

FBI Warns FSB-Linked Hackers Exploiting Unpatched Cisco Devices for Cyber Espionage

Russian FSB-linked group Static Tundra exploits CVE-2018-0171 in Cisco Smart Install to gain persistent access to strategic networks worldwide.
[ Load more ]