Network World

Cisco tries to squash Smart Install security abuse

Cisco is playing down a security issue with its Smart Install switch management software that could allow unauthenticated access to customer configuration details. Cisco defines Smart Install as a ...
PC World

This tool can help you discover Cisco Smart Install protocol abuse

For the past few weeks attackers have been probing networks for switches that can potentially be hijacked using the Cisco Smart Install (SMI) protocol. Researchers from Cisco’s Talos team have now ...
Bleeping Computer

Cisco discloses new IOS XE zero-day exploited to deploy malware implant

Cisco disclosed a new high-severity zero-day (CVE-2023-20273) today, actively exploited to deploy malicious implants on IOS XE devices compromised using the CVE-2023-20198 zero-day unveiled earlier ...
Yahoo

Hackers targeting Cisco IOS XE devices with BadCandy implant

Add Yahoo as a preferred source to see more of our stories on Google. This story was originally published on Cybersecurity Dive. To receive daily news and insights, subscribe to our free daily ...
Bleeping Computer

US, UK warn of govt hackers using custom malware on Cisco routers

The US, UK, and Cisco are warning of Russian state-sponsored APT28 hackers deploying a custom malware named 'Jaguar Tooth' on Cisco IOS routers, allowing unauthenticated access to the device. APT28, ...
Threat Post

Cisco Patches Two Critical RCE Bugs in IOS XE Software

Cisco releases 22 patches as part of its semiannual Cisco IOS and IOS XE software security advisory. Three critical vulnerabilities were patched by Cisco Systems on Wednesday, each tied to the company ...
CRN

Cisco IOS XE Devices Have Been ‘Widely Exploited:’ Researcher

A critical vulnerability in Cisco IOS XE has enabled malicious implants on ‘thousands’ of systems, according to the CTO of exploit intelligence company VulnCheck. Thousands of Cisco IOS XE devices ...