[HackerNews] Critical Flaw Found in Older Cisco Small Business Routers Won’t Be Fixed

A critical vulnerability in Cisco Small Business Routers will not be patched by the networking equipment giant, since the devices reached end-of-life in 2019.
Tracked as CVE-2021-34730 (CVSS score: 9.8), the issue resides in the routers’ Universal Plug-and-Play (UPnP) service, enabling an unauthenticated, remote attacker to execute arbitrary code or cause an affected device to restart

Source: Read More (The Hacker News)

You might be interested in …

[ESET] Tackling the insider threat to the new hybrid workplace

All posts, ESET feed

Now that organizations are set to evolve a hybrid blend of home and office-based work for most employees, it is more important then ever to address the risks that insider threat can – willingly or unwitingly – pose. The post Tackling the insider threat to the new hybrid workplace appeared first on WeLiveSecurity Source: Read […]

Read More

[SANS ISC] Video: Cobalt Strike & DNS – Part 1, (Sun, May 30th)

All posts, Sans-ISC

One of the Cobalt Strike servers reported by Brad Duncan also communicates over DNS. This can be tested with a simple DNS TXT query: The content of this TXT record contains the start of a Cobalt Strike beacon, encoded with Netbios Name encoding. I recently published an update to my base64dump.py tool to handle this […]

Read More

[BleepingComputer] Microsoft takes down domains used to scam Office 365 users

Microsoft’s Digital Crimes Unit (DCU) has seized 17 malicious domains used by scammers in a business email compromise (BEC) campaign targeting the company’s customers. […] Source: Read More (BleepingComputer)

Read More

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.