MY BRAND BOOK IOS XE zero-day attacks compromised around 10,000 Cisco devices

IOS XE zero-day attacks compromised around 10,000 Cisco devices

By MYBRANDBOOK

Over 10,000 Cisco IOS XE devices have been compromised by attackers who used a key zero-day defect that was just recently made public in order to implant malware. Enterprise switches, aggregation and industrial routers, access points, wireless controllers, and other items are among the equipment running Cisco IOS XE software.

As per threat intelligence company VulnCheck, the maximum severity vulnerability (CVE-2023-20198) has been extensively exploited in attacks targeting Cisco IOS XE systems with the Web User Interface (Web UI) feature enabled, that also have the HTTP or HTTPS Server feature toggled on.

VulnCheck scanned internet-facing Cisco IOS XE web interfaces and discovered thousands of infected hosts. The company has also released a scanner to detect these implants on affected devices.

Cisco cautioned administrators to disable the vulnerable HTTP server feature on all internet-facing systems until a patch becomes available.

Cisco detected the CVE-2023-20198 attacks in late September following reports of unusual behavior on a customer device received by Cisco's Technical Assistance Center (TAC). Evidence of these attacks' dates back to September 18, when the attackers were observed creating local user accounts named "cisco_tac_admin" and "cisco_support."

Moreover, the attackers deployed malicious implants using CVE-2021-1435 exploits and other unknown methods, enabling them to execute arbitrary commands at the system or IOS levels on compromised devices.

"We assess that these clusters of activity were likely carried out by the same actor. Both clusters appeared close together, with the October activity appearing to build off the September activity. The first cluster was possibly the actor's initial attempt and testing their code, while the October activity seems to show the actor expanding their operation to include establishing persistent access via deployment of the implant," Cisco said.

The company also issued a "strong recommendation" for administrators to look for suspicious or recently created user accounts as potential signs of malicious activity linked to this threat.

BREAKING NEWS

Telecom players request Government to address revenue sharing mod...

Telecom operators Bharti Airtel, Reliance Jio and Vodafone Idea repres...

Dell Technologies and Alienware unveil the new Alienware x16 R2 i...

Dell Technologies and Alienware have launched the new Alienware x16 R2 in...

BharatPe introduces BharatPe One, an all-in-one payment device...

BharatPe introduced BharatPe One, a multipurpose payment device that combi...

RBI gives PayU permission to function as a payment aggregator...

The Reserve Bank of India has given PayU permission in principle to fun...

TECHNO TRENDS

TAC Security becomes Cyber Security Assessor for the App Defen

The cybersecurity company, TAC Security has been selected as a key Cyber ...

InterGlobe’s Rahul Bhatia and C.P. Gurnani together announce

In a move that is set to transform the AI landscape, Rahul Bhatia, Group M...

Download masked Aadhaar to improve privacy

Download a masked Aadhaar from UIDAI to improve privacy. Select masking w...

Sterlite Technologies' Rs 145 crore claim against BSNL rejecte

An arbitrator has rejected broadband technology company Sterlite Technolog...

E-Magazine

TECHNOTAINMENT

ED attaches Raj Kundra, Shilpa Shetty’s Rs 97 crore worth as

Salman Khan trolled for singing with B Praak at Anant Ambani's

To celebrate Mukesh Ambani's youngest son Anant Ambani’s 29th birthday

Disney+ Hotstar wins the Best OTT Platform of the year

Film Critics Guild and Group M Motion Entertainment, in collaboration with

MOVERS & SHAKERS

Nium Appoints Alexandra Johnson appoints as Chief Payments Off

SISL elevates Ankita Wadhawan as CEO—End User Computing

The IT service provider, SISL in a LinkedIn post announced the elevation

InfoVision appoints Radhika Venkatraman to its Advisory Board

Global digital services company, InfoVision has announced the appointment

OPEN YOUR EYES

Digitalization and cyberattacks go hand in hand

Ragnar Locker Hides in Virtual Machine to Escape from antivirus software

Opportunities For Technological Disruption In Times Of Crisis

Payment industry is eyeing Asia as attractive for V.C. investors amid COVID-19

Waiting For A Cybersecurity disaster to happen

INTERVIEWS

Fortinet leading the charge towards networking and security co

Making security more accessible, CP PLUS stands unrivaled as a

The topmost priority of CP Plus is to establish a dedicated R&D Hub in Indi

Commvault leading the next generation of data protection throu

A valued brand, Commvault reinforces the commitment to protect customer dat

HOT PICK

COLORFUL rolls out an array of gaming laptops

Dell Technologies launches new AI-powered commercial PC portfo

Dell Technologies has launched the broadest portfolio of commercial AI lap

Canon India Introduces 4K Remote PTZ Camera Controller & 4K In

Canon India, a leading company in digital imaging solutions, further solidi

MAKE IN INDIA BRANDS

SAMSUNG INDIA ELECTRONICS PVT. LTD.

STERLITE TECHNOLOGIES LTD.

ATRIE TECHNOLOGY PVT. LTD.

HP INDIA SALES PVT. LTD.

EMINENT CIO'S OF INDIA

Adopting cutting-edge technologies to scale up business growth

Transparency is key, with clear communication abou...

Digitalization and digitization: The only way to move forward for Enterprises

While we end up deploying multiple tools and defin...

In the Tech-driven world, digitalization is crucial to survive and succeed

The companies that are doing more to build trust a...

ICONS OF INDIA

Technology Icons Of India 2023: Anant Maheshwari

As President of Microsoft India, he is responsible for Microsoft’s o...

Technology Icons Of India 2023: Lt Gen (Dr.) Rajesh Pant (Retd.)

LT Gen(Dr.) Rajesh Panth (Retd.), National cyber security coordination...

Technology Icons Of India 2023: Deepinder Goyal

Deepinder Goyal is the Founder and CEO of Zomato. Deepinder, or Deepi,...

PARTNER SPEAKERS

Arrow PC Network Empowering Businesses with Visionary Technology Solutions for a Brighter Future

Being in the IT Sector for more than 30 years, the Founder & MD of Arrow PC Ne...

Symmetrix Empowering Collaboration between OEMs, Customers, and SMEs for Seamless Project Execution and Growth

A robust support system exists that fosters seamless communication and collabo...

Technological innovations impacting today will redefine the future

Securenet stands apart due to its commitment to 15 essential criteria covering...

PSU

BBNL empowering rural India digitally

BBNL provide high speed digital connectivity to Rural India at afforda...

Leading company into fertilizers in the country

NFL is a dynamic organization committed to serve the farming community...

DRDO is India's largest and most diverse research organisation

DRDO is the R&D wing of Ministry of Defence, Govt of India, with a vis...

VIDEOS

Top 25 Brands

Most Trusted Brands 2023 : Samsung Electronics India Pvt. Ltd.

Samsung brings the latest cutting-edge technologies at an affordable price to ...

Most Trusted Brands 2023 : Nvidia Graphics Pvt. Ltd.

NVIDIA GPUs offer a wide range of features that are specifically designed to a...

Most Trusted Brands 2023 : Intel Technology India Pvt. Ltd.

Intel has unique assets and a strong, open ecosystem that gives Intel a compe...

Value-Added Distribution

INGRAM MICRO INDIA PVT. LTD.

Ingram Micro India, a large national distributor offers a comprehensiv...

RAH INFOTECH

RAH Infotech is India’s fastest growing technology value added dist...

BEETEL TELETECH LTD.

: Beetel is one of the oldest and most reputed brands in the Industry,...

ITFORUM 2024

WIITF 2024

CMO of the Year

WOMEN LEADERSHIP

EMINENT CIO's OF INDIA

TRENDS IN TECHNOLOGY