Novel Cisco NX-OS zero-day leveraged by Chinese hackers

2 July 2024

Chinese state-backed hacking group Velvet Ant targeted Cisco network switches with NX-OS software impacted by the newly discovered zero-day, tracked as CVE-2024-20399, as part of a cyberespionage attack in April, according to The Record, a news site by cybersecurity firm Recorded Future. Exploitation of the vulnerability, which was reported by Sygnia researchers and has since been addressed by Cisco, enabled threat actors with admin-level credentials to compromise susceptible Cisco switches with custom malware that facilitated remote connections with impacted devices, file uploads, and code execution, said Sygnia Incident Response Research Manager Amnon Kushir.

Source: SC Magazine

Date:

2 July 2024

Categorie(s):

NEWS

Tag(s):

Android, Cyber Threats, Google, Hacking, Mobile Development

New ransomware group ‘Volcano Demon’ uses direct phone calls to pressure victims4 July 2024
Cloudflare offers simpler way to stop AI bots4 July 2024
RSA Conference 2024: Exploring our Current Cybersecurity Realities Amidst AI Myths4 July 2024
Volcano Demon Ransomware Gang Makes Phone Calls to Victim for Ransom4 July 2024
Law enforcement task force disrupts infrastructure used for Cobalt Strike cyberattacks4 July 2024