A cyberespionage group called “Velvet Ant,” believed to be aligned with China, recently exploited a zero-day vulnerability in Cisco Nexus devices. This flaw, identified as CVE-2024-20399, allows an attacker to execute arbitrary commands as root on the affected device. According to Sygnia researchers, this exploit led to the deployment of custom malware that enabled remote … Read more
In a recent cyber attack, Chinese hackers were able to exploit a vulnerability in Cisco software to gain unauthorized access to sensitive information. The flaw in the software allowed them to infiltrate the system and retrieve data without detection. This incident highlights the ongoing threat posed by hackers and the need for companies to maintain … Read more
Recently, a group of Chinese hackers known as Velvet Ant has been identified as exploiting a zero-day vulnerability in new Cisco devices. The hackers, believed to be state-sponsored, have been using this vulnerability to gain unauthorized access to these devices and potentially carry out cyber attacks. The zero-day vulnerability allows the hackers to bypass security … Read more
In a recent development, US intelligence reportedly assisted a NATO ally in seizing Chinese “war drones.” The drones were apparently intercepted in a covert operation conducted with the help of US intelligence agencies. The specific details of the operation have not been disclosed, but it is believed that the drones were taken without the knowledge … Read more
Cisco has issued a warning about a zero-day exploit in its NX-OS software that is being actively exploited by a Chinese state-sponsored group known as Velvet Ant. The cybersecurity firm Sygnia first reported the issue to Cisco after detecting the exploit during an investigation into the activities of the Velvet Ant group. According to Sygnia’s … Read more
Italian customs police in southern Italy have intercepted a shipment of Chinese “war drones” destined for Libya, which was concealed within wind turbine parts. The seizure of six containers containing fuselages and wings of drones capable of military use was made in the port of Gioia Tauro in Calabria. Each drone, when assembled, would weigh … Read more
Italian authorities seized Chinese military drones destined for Libya in the port of Gioia Tauro. The drones, falsely labeled as parts for wind turbines, were intercepted following a tip-off from the United States. The operation violated the United Nations embargo on arms shipments to Libya. Since the fall of Muammar Gaddafi in 2011, Libya has … Read more
Sygnia has discovered that Chinese threat actors, specifically Velvet Ant, have been exploiting a zero-day vulnerability in certain Cisco switches to install malware. These threat actors gained access to Cisco Nexus switches by harvesting administrator-level credentials, allowing them to remotely connect to compromised devices and execute malicious code. The vulnerability, known as CVE-2024-20399, has since … Read more
Cisco has fixed an issue in a network management platform that allows attackers to execute commands on affected devices’ operating systems. The flaw, known as CVE-2024-20399 and rated as medium risk, can be exploited by authenticated users. The bug is located in the Cisco NX-OS Software CLI, enabling attackers to run arbitrary commands as root. … Read more
A recent security threat has emerged as Chinese hackers have been found exploiting a new zero-day vulnerability in Cisco NX-OS. This hacking activity was reported by SC Media, revealing concerns about potential cyber attacks on an undetermined scale. The zero-day vulnerability in Cisco NX-OS poses a significant risk to organizations and individuals who use this … Read more