Tuesday, August 11, 10:28
Home security Cisco vulnerabilities endanger millions of corporate devices

Cisco vulnerabilities endanger millions of corporate devices

CiscoSecurity investigators discovered 5 vulnerabilities on the Cisco Discovery Protocol, which can allow one hacker take control of corporate phones, routers and other devices.

Many corporations have been found in the past phones and routers with vulnerabilities. Now, researchers security discovered vulnerabilities in corporate phones, net cameras and switches Cisco, which can be used by hackers to penetrate into corporate networks. Cisco is one of the most popular Companies, which means many businesses are in risk.

Vulnerabilities are dangerous because they can be used for espionage. They were discovered by the security company Armis. According to researchers, can bypass the strategy "segmentation", Used by network administrators to protect them networks their.

The attackers could target a vulnerable Cisco network switch to acquire access to non-encrypted, internal information and to move through the target system. The attackers could also use vulnerabilities to attack many at once Appliances (e.g. on all corporate phones or all cameras). That way hackers could watch or cause damage to an organization, disabling devices.

“Network segmentation is a key security technique and production gadgets, ”said one researcher. However, experienced hackers and APT teams are constantly on the alert to act if they find a vulnerability.

According to the researchers, the vulnerabilities were discovered in the Cisco Discovery Protocol, which allows Cisco products to show their identity to other products within a private network. CDP is part of "Layer 2" of a network, which defines the data connection between devices belonging to the same network.

Researchers believe that use The CDP has some benefits, but can help attackers find Cisco products while on a network. And because all company products use CDP, one vulnerability can be used for automatic and simultaneous targeting of many devices.

Armis said it unveiled its findings at Cisco at the end of August 2019. Now, the company circulating patches to correct the five vulnerabilities. Armis researchers also helped with the correction.

"On February 5, we discovered vulnerabilities in the Cisco Discovery Protocol in many Cisco products, along with risk mitigation tips and corrections," a Cisco spokesman said.

The company said there was no evidence that the vulnerabilities were exploited by malicious hackers.

To exploit the vulnerabilities, the attackers will must first have access to the target network. However, if they manage to get into the network, they can break one Cisco device after another. If attackers take control of a router or switch they can breach unencrypted data network.

The patches released by Cisco are very important, but not all vulnerabilities are automatically updated. Therefore, the user needs to be 'hand in hand'. Given the widespread use of Cisco equipment in business networks, patches are required for it protection of networks.


Please enter your comment!
Please enter your name here

Absent Mia
Absent Miahttps://www.secnews.gr
Being your self, in a world that constantly tries to change you, is your greatest achievement


How to stream 4K Ultra HD content to Netflix?

During the quarantine, Netflix has been a great help to people spending boring hours at home. The service has ...

iPhone: Add and remove Widgets from the Home screen

Apple brought the widgets to the Home screen of the iPhone with iOS 14. This is an advanced form of widgets from ...

The best security cameras to protect your home!

If you are afraid of intruders in your home, these security cameras can stream live video directly to your phone.

Do hackers carry out their attacks in real time?

More generally, there is a perception that hackers are suddenly infiltrating systems and devices and carrying out attacks. However, the reality is different. The...

Facebook: How to hide old posts

Facebook has introduced a new tool called "Activity Management" that will allow you to delete old posts, helping you to improve ...

How to download and install the Play Store on laptops and PCs?

Nowadays, many people rely on their smartphones, as they can be used easily and quickly for ...

Portable air conditioner: It is worn on the back and as a jewel 😛

Portable air conditioner - Worn on the back and like jewelry: 40 degrees and we have melted. Those of you who are lucky on the beach, please stop ...

How to download Google Camera Port 7.4 / GCam 7.4 on Xiaomi devices?

Pixel devices have Google Camera (GCam) as their default camera application. And since the Pixel series is known for ...

How to type in multiple languages ​​simultaneously on Android

People in today's world are very much addicted to smartphones. They provide access to many applications that can be used mainly ...

LucidPix: Make your photos 3D with this app!

Give a 3D format to your photos, with the LucidPix application, which is available in various versions for both Android and iPhone ...