Censys recently reported that there are 19,500 end-of-life Cisco VPN routers being used by individuals and small businesses on the internet that may be at risk of being targeted by a new attack.
Using a combination of the two vulnerabilities mentioned below, threat actors have been able to evade authentication processes and execute arbitrary commands on Cisco Small Business routers based on the underlying operating system:-
There are four Cisco small business routers that are affected by this vulnerability, and here below we have mentioned them:-
Here below we have mentioned the top ten countries that are currently running a vulnerable Cisco device:-
There is a critical severity vulnerability in routers that allows unauthenticated attackers to bypass the authentication process and gain root access. This vulnerability can be exploited remotely by sending specially crafted HTTP requests to the router’s web-based management interface.
Gaining root access means that the attacker has complete control over the router and can make changes, access sensitive information, and potentially use the router as a pivot point to attack other devices on the network.
Cisco affirmed that even though end-of-life devices will no longer receive security updates, users can still take steps to protect them from attacks.
A recommended solution is to disable the web-based management interface and block access to ports 443 and 60443. Doing so would prevent any exploitation attempts on the device.
To do so you have to follow the simple steps that we have mentioned below:-
In the event the above mitigations are implemented, the affected routers will still be accessible via the LAN interface and could still be configured.
Here below we have mentioned a few more security measures recommended by the experts:-
Network Security Checklist – Download Free E-Book
In 2023, C2A Security added multiple OEMs and Tier 1s to its portfolio of customers,…
Apple users are falling prey to a sophisticated phishing campaign designed to hijack their Apple…
Hackers have been found leveraging weaponized virtual hard disk (VHD) files to deploy the notorious…
A security update released by ChatRTX on March 26th, 2024, addresses two vulnerabilities (CVE-2024-0082 and…
A new threat has emerged, targeting unsuspecting iPhone users through the seemingly secure iMefofferssage platform.…
Google patched seven vulnerabilities in the Chrome browser on Tuesday, including two zero-day exploits that…