China-Linked Hackers Strike Again: Cisco Patches Zero-Day Vulnerability Exploited to Install Root-Level Malware

Cisco patches NX-OS zero-day bug exploited by Chinese hackers to install malware on vulnerable switches.

3P
Published: July 1, 2024 5:53 pmAdded: July 1, 2024 at 11:01 amAssembled by: The Editor
Pro Dashboard

Hot Take:

Wow, who knew switches could be this vulnerable? It’s like finding out your home security system can be bypassed with a paperclip. Cisco’s devices are clearly having a “bad hair day,” and Velvet Ant is making a beeline for all that juicy data. Time to patch those switches before the ants march one by one, hurrah, hurrah!

Key Points:

  • Cisco patched a zero-day vulnerability (CVE-2024-20399) in NX-OS exploited by Velvet Ant.
  • Velvet Ant, a Chinese state-sponsored group, used the flaw to install malware as root.
  • The vulnerability allows attackers to execute arbitrary commands with root privileges.
  • Devices affected include various Nexus and MDS series switches.
  • Cisco advises regular monitoring and credential changes for network-admin and vdc-admin users.

Membership Required

 You must be a member to access this content.

View Membership Levels
Already a member? Log in here
The Nimble Nerd
powered by the NSA, er,  GDPR Cookie Compliance
Confessional Booth of Our Digital Sins

Okay, deep breath, let's get this over with. In the grand act of digital self-sabotage, we've littered this site with cookies. Yep, we did that. Why? So your highness can have a 'premium' experience or whatever. These traitorous cookies hide in your browser, eagerly waiting to welcome you back like a guilty dog that's just chewed your favorite shoe. And, if that's not enough, they also tattle on which parts of our sad little corner of the web you obsess over. Feels dirty, doesn't it?