Cisco Firewall Fiasco: Patch Now or Face the Fire!
Cisco warned about a new attack variant targeting its firewalls, causing them to reload and leading to denial-of-service conditions. Despite patches, these firewalls have been under attack for months. Meanwhile, two critical bugs in Cisco Unified CCX software could allow attackers to execute commands with root privileges. Time to patch up, folks!
Hot Take:
Perhaps Cisco should consider renaming their firewalls to “Swiss Cheese” given the number of holes attackers seem to be finding lately. It’s like a hacker’s cheese fondue party out there, with everyone dipping into the vulnerabilities. And while Cisco’s busy playing whack-a-mole with patches, the rest of us are just hoping they don’t run out of hammers. Yikes!
Key Points:
– Cisco’s firewalls are under attack, causing unpatched devices to crash, creating denial-of-service conditions.
– New attacks have been ongoing since May, with the latest variant discovered in November.
– Two critical bugs in Cisco’s Unified Contact Center Express (UCCX) were patched, though they haven’t been exploited yet.
– Advanced threat actors, potentially linked to government-backed groups, are behind these attacks.
– Cisco’s investigation involves multiple government agencies to tackle these persistent security threats.