Hackers exploit Cisco SNMP flaw to install rootkit on switches
Hackers have taken advantage of a recently patched vulnerability in Cisco's networking devices, exploiting a flaw known as CVE-2025-20352. This issue allows remote code execution, which means attac...
Hackers have taken advantage of a recently patched vulnerability in Cisco's networking devices, exploiting a flaw known as CVE-2025-20352. This issue allows remote code execution, which means attackers can run malicious code on the devices without needing physical access. In this case, they deployed a Linux rootkit to gain long-term access to older, unprotected switches.
If you’re managing these devices, you need to be on high alert. The attackers are using this flaw to infiltrate networks, raising serious security concerns. Cisco has rolled out patches, so it's crucial to update your systems if you haven't already. Ignoring this could leave your network vulnerable to further attacks. Stay vigilant and make sure your defenses are up to date.
More insights from the team
Continue exploring adjacent research and threat briefings selected for their relevance to this topic.
U.S. Congressional Budget Office faces suspected cyberattack
The U.S. Congressional Budget Office is in hot water after a suspected foreign cyberattack breached its network. The CBO recently confirmed the incident, raising concerns about the potential exposu...
Researchers uncover vulnerabilities in ChatGPT that expose data
Hey there! If you’re a fan of ChatGPT, you might want to pay attention. Researchers just uncovered a bunch of vulnerabilities in OpenAI's latest models, GPT-4o and GPT-5. These issues could let att...
Gootloader malware resurfaces with new tactics after seven months
Gootloader malware is back in the game after a seven-month hiatus, and it’s got some new tricks up its sleeve. This sneaky malware loader is once again using SEO poisoning to push fake websites tha...