Chinese-linked advanced persistent threat group utilized a vulnerability in Cisco NX-OS to distribute customized malware

Chinese-linked advanced persistent threat group utilized a vulnerability in Cisco NX-OS to distribute customized malware

A China-linked group, Velvet Ant, exploited a zero-day vulnerability in Cisco NX-OS software, leading to the deployment of custom malware on vulnerable switches. The flaw, identified as CVE-2024-20399 with a CVSS score of 6.0, allowed attackers to execute arbitrary commands as root within the operating system of affected devices. Only attackers with administrator credentials could … Read more

Chinese hackers are using vulnerability in Cisco switches to distribute malware

Chinese hackers are using vulnerability in Cisco switches to distribute malware

A cyber espionage group known as Velvet Ant, believed to have ties to China, has been observed exploiting a zero-day vulnerability in Cisco NX-OS software used in switches to distribute malware. The vulnerability, tracked as CVE-2024-20399, allows an authenticated, local attacker to execute arbitrary commands as root on the affected device. By exploiting this flaw, … Read more

Hackers Exploiting Cisco Webex Meetings App to Distribute Malicious Software

Hackers Exploiting Cisco Webex Meetings App to Distribute Malicious Software

A recent information theft campaign has been identified, showcasing the detailed tactics, techniques, and procedures (TTPs) used by attackers at various stages of the attack process. The Miter ATT&CK framework was utilized to categorize these TTPs and pinpoint potential areas for detection. Research into the campaign revealed how attackers employed social engineering tactics to deceive … Read more