Physical Address
304 North Cardinal St.
Dorchester Center, MA 02124
Hackers have been exploiting a flaw in a popular networking product used by large enterprises for at least three years, Cisco said, prompting the US government and its allies to urge organizations to take action.
The error contains The maximum vulnerability severity score is 10.0allows hackers to remotely break into networks running Catalyst SD-WAN products, which allows large companies and government agencies with multiple offices to connect their private networks over long distances.
By exploiting this bug online, hackers can gain the highest level of permissions for these devices and maintain persistent hidden access within the victim’s network, allowing them to spy or steal data over a long period of time.
Cisco said after discovering the flaw, its researchers Trace evidence of exploitation Dating back to 2023. Some of the affected organizations are said to be critical infrastructure. The company did not provide details, but the phrase “critical infrastructure” could refer to everything from power grids and water supplies to the transportation sector.
Several governments have warned, including Australia, Canada, New Zealand, the United Kingdom and the United States alert Threat actors target organizations “globally.”
The US cybersecurity agency CISA ordered all civilian federal agencies to patch their systems by the end of Friday, citing… Imminent threat and unacceptable risks to the federal government. Federal Cybersecurity Agency, which is Currently operating at reduced capacity Due to the partial government shutdown, she said she is aware of ongoing exploitation.
Neither Cisco nor the governments attributed the attacks to a specific threat group or nation-state, if known, but traced one set of activity to the name UAT-8616.
In December, Cisco warned of a Impairment was similarly rated 10.0 In the Async software that runs most of its products, it has been actively used to hack into its customers’ networks.