* . *
  • About
  • Advertise
  • Privacy & Policy
  • Contact
Friday, June 27, 2025
Earth-News
  • Home
  • Business
  • Entertainment
    Susquehanna Raises Penn Entertainment Inc. (PENN) Price Target. – Yahoo Finance

    Susquehanna Raises Price Target for Penn Entertainment Inc. (PENN)

    George Lopez is coming to Spokane – KXLY.com

    George Lopez is coming to Spokane – KXLY.com

    Netflix unveils Dallas immersive venue for fans of hit shows like ‘Squid Game,’ ‘Stranger Things’ – Houston Chronicle

    Step Inside Netflix’s New Dallas Immersive Experience Featuring Hits Like ‘Squid Game’ and ‘Stranger Things

    ‘Puttin’ on the Ritz’: Civic Players bring ‘Young Frankenstein’ to life – Yahoo

    Civic Players Deliver a Hilarious and Unforgettable Performance of ‘Young Frankenstein

    ‘Wheel of Fortune’: Amputee Wins $60,000 After Breaking Incredible ‘Curse’ – Hastings Tribune

    Wheel of Fortune’ Amputee Breaks Incredible ‘Curse’ to Win $60,000!

    North Star Sports & Entertainment Network: Coming soon – KTTC News

    North Star Sports & Entertainment Network: Coming soon – KTTC News

  • General
  • Health
  • News

    Cracking the Code: Why China’s Economic Challenges Aren’t Shaking Markets, Unlike America’s” – Bloomberg

    Trump’s Narrow Window to Spread the Truth About Harris

    Trump’s Narrow Window to Spread the Truth About Harris

    Israel-Gaza war live updates: Hamas leader Ismail Haniyeh assassinated in Iran, group says

    Israel-Gaza war live updates: Hamas leader Ismail Haniyeh assassinated in Iran, group says

    PAP Boss to Niger Delta Youths, Stay Away from the Protest

    PAP Boss to Niger Delta Youths, Stay Away from the Protest

    Court Restricts Protests In Lagos To Freedom, Peace Park

    Court Restricts Protests In Lagos To Freedom, Peace Park

    Fans React to Jazz Jennings’ Inspiring Weight Loss Journey

    Fans React to Jazz Jennings’ Inspiring Weight Loss Journey

    Trending Tags

    • Trump Inauguration
    • United Stated
    • White House
    • Market Stories
    • Election Results
  • Science
  • Sports
  • Technology
    Wayve Expands Engineering Leadership to Power Next-Gen Autonomous Driving Technology – Silicon Canals

    Wayve Boosts Engineering Leadership to Accelerate Next-Gen Autonomous Driving Innovation

    Frontdoor Announces Tech Expert Dr. Bala Ganesh as Chief Technology Officer – Business Wire

    Frontdoor Appoints Tech Visionary Dr. Bala Ganesh as New Chief Technology Officer

    Defense technology giant Northrop Grumman to host interviews in Iuka to fill technician roles – supertalk.fm

    Defense technology giant Northrop Grumman to host interviews in Iuka to fill technician roles – supertalk.fm

    China’s Military Introduces Mosquito-Sized Drones: A Game-Changing Surveillance Technology – Indian Defence Review

    China Unveils Mosquito-Sized Drones: Revolutionizing Surveillance Technology

    Marvell Technology Stock Rallies After AI Event Sparks Investor Optimism – Yahoo Finance

    Marvell Technology Stock Rallies After AI Event Sparks Investor Optimism – Yahoo Finance

    Promising Technology Stocks To Follow Today – June 22nd – MarketBeat

    Top Technology Stocks to Watch Today – June 22nd

    Trending Tags

    • Nintendo Switch
    • CES 2017
    • Playstation 4 Pro
    • Mark Zuckerberg
No Result
View All Result
  • Home
  • Business
  • Entertainment
    Susquehanna Raises Penn Entertainment Inc. (PENN) Price Target. – Yahoo Finance

    Susquehanna Raises Price Target for Penn Entertainment Inc. (PENN)

    George Lopez is coming to Spokane – KXLY.com

    George Lopez is coming to Spokane – KXLY.com

    Netflix unveils Dallas immersive venue for fans of hit shows like ‘Squid Game,’ ‘Stranger Things’ – Houston Chronicle

    Step Inside Netflix’s New Dallas Immersive Experience Featuring Hits Like ‘Squid Game’ and ‘Stranger Things

    ‘Puttin’ on the Ritz’: Civic Players bring ‘Young Frankenstein’ to life – Yahoo

    Civic Players Deliver a Hilarious and Unforgettable Performance of ‘Young Frankenstein

    ‘Wheel of Fortune’: Amputee Wins $60,000 After Breaking Incredible ‘Curse’ – Hastings Tribune

    Wheel of Fortune’ Amputee Breaks Incredible ‘Curse’ to Win $60,000!

    North Star Sports & Entertainment Network: Coming soon – KTTC News

    North Star Sports & Entertainment Network: Coming soon – KTTC News

  • General
  • Health
  • News

    Cracking the Code: Why China’s Economic Challenges Aren’t Shaking Markets, Unlike America’s” – Bloomberg

    Trump’s Narrow Window to Spread the Truth About Harris

    Trump’s Narrow Window to Spread the Truth About Harris

    Israel-Gaza war live updates: Hamas leader Ismail Haniyeh assassinated in Iran, group says

    Israel-Gaza war live updates: Hamas leader Ismail Haniyeh assassinated in Iran, group says

    PAP Boss to Niger Delta Youths, Stay Away from the Protest

    PAP Boss to Niger Delta Youths, Stay Away from the Protest

    Court Restricts Protests In Lagos To Freedom, Peace Park

    Court Restricts Protests In Lagos To Freedom, Peace Park

    Fans React to Jazz Jennings’ Inspiring Weight Loss Journey

    Fans React to Jazz Jennings’ Inspiring Weight Loss Journey

    Trending Tags

    • Trump Inauguration
    • United Stated
    • White House
    • Market Stories
    • Election Results
  • Science
  • Sports
  • Technology
    Wayve Expands Engineering Leadership to Power Next-Gen Autonomous Driving Technology – Silicon Canals

    Wayve Boosts Engineering Leadership to Accelerate Next-Gen Autonomous Driving Innovation

    Frontdoor Announces Tech Expert Dr. Bala Ganesh as Chief Technology Officer – Business Wire

    Frontdoor Appoints Tech Visionary Dr. Bala Ganesh as New Chief Technology Officer

    Defense technology giant Northrop Grumman to host interviews in Iuka to fill technician roles – supertalk.fm

    Defense technology giant Northrop Grumman to host interviews in Iuka to fill technician roles – supertalk.fm

    China’s Military Introduces Mosquito-Sized Drones: A Game-Changing Surveillance Technology – Indian Defence Review

    China Unveils Mosquito-Sized Drones: Revolutionizing Surveillance Technology

    Marvell Technology Stock Rallies After AI Event Sparks Investor Optimism – Yahoo Finance

    Marvell Technology Stock Rallies After AI Event Sparks Investor Optimism – Yahoo Finance

    Promising Technology Stocks To Follow Today – June 22nd – MarketBeat

    Top Technology Stocks to Watch Today – June 22nd

    Trending Tags

    • Nintendo Switch
    • CES 2017
    • Playstation 4 Pro
    • Mark Zuckerberg
No Result
View All Result
Earth-News
No Result
View All Result
Home Technology

Fears grow over extent of Cisco IOS XE zero-day

October 19, 2023
in Technology
Fears grow over extent of Cisco IOS XE zero-day
Share on FacebookShare on Twitter

Skórzewiak – stock.adobe.com

Researchers have identified spiking numbers of victims of a recently disclosed Cisco zero-day, as users of the networking supplier’s IOS XE software are urged to take defensive measures

Alex Scroxton

By

Alex Scroxton,
Security Editor

Published: 19 Oct 2023 16:45

Three days after Cisco disclosed details of a dangerous zero-day in its IOS XE software, known compromises appear to be rising at a rapid rate, with thousands of victims, many of them high-profile telecoms companies, beginning to be identified.

CVE-2023-20198 enables a remote, unauthenticated attacker to set up an account on a vulnerable system with elevated privileges, which they can then use to take over the victim’s systems. Affected customers will all have enabled the web UI feature through the ip http server or ip http secure-server commands.

It was uncovered by Cisco’s teams while responding to tech support tickets, but not before an as-yet undisclosed threat actor or actors exploited it to deploy an implant enabling them to execute arbitrary commands at system or IOS level.

According to threat intelligence provided by Censys, a threat-hunting and exposure-management specialist, the number of infections spiked by over 7,000 in the space of 24 hours from 17 to 18 October, rising from 34,140 to 41,983 compromised hosts out of a total of 67,445 it identified as using the vulnerable service.

Censys said the majority of these hosts are located in the US, with approximately 6,509 infections, followed by the Philippines, Mexico and Chile. There are also over 1,000 infected hosts apiece in India, Peru, Thailand, Brazil and Singapore. Contacted by Computer Weekly, Censys said its scans had identified 673 infections in the UK as of 18 October.

Others say the scale of the compromise may be even greater. Our sister title, TechTarget Security, cited Netlas.io, which said it had seen over 80,000 exposed and vulnerable hosts as of the morning of Tuesday 17 September.

Writing in a blog post on 17 September, VulnCheck’s Jacob Baines said: “Cisco buried the lede by not mentioning thousands of internet-facing IOS XE systems have been implanted. VulnCheck scanned internet-facing Cisco IOS XE web interfaces and found thousands of implanted hosts. This is a bad situation, as privileged access on the IOS XE likely allows attackers to monitor network traffic, pivot into protected networks, and perform any number of man-in-the-middle attacks.”

All victims great and small

The Censys research team additionally shared data on the most impacted organisations, finding evidence that major communications services providers (CSPs) around the world, in particular Asia-Pacific and Latin America, are bearing the brunt of the problem. This may magnify the impact down the supply chain to their customers, they warned.

“What characteristics do most of these … systems share? They predominantly represent telecommunications companies offering internet services to both households and businesses,” said the Censys team.

“As a result, the primary targets of this vulnerability are not large corporations but smaller entities and individuals who are more susceptible.”

Meanwhile, the US Cybersecurity and Infrastructure Security Agency has added CVE-2023-20198 to its Known Exploited Vulnerabilities catalogue, obliging US federal bodies to take steps to mitigate its impact or discontinue usage of the affected software altogether by Friday 20 October.

Users have until 9 November to address a different, older vulnerability tracked as CVE-2021-1435, that is being chained to deliver the malicious implant.

Read more on Application security and coding requirements


Cisco IOS XE zero-day facing mass exploitation

AlexanderCulafi

By: Alexander Culafi


Alert sounded over dangerous Cisco IOS XE zero-day

AlexScroxton

By: Alex Scroxton


Cisco working on fix for critical IOS XE zero-day

AlexanderCulafi

By: Alexander Culafi


Censys finds hundreds of exposed devices in federal orgs

AlexanderCulafi

By: Alexander Culafi

>>> Read full article>>>
Copyright for syndicated content belongs to the linked Source : Computer Weekly – https://www.computerweekly.com/news/366556337/Fears-grow-over-extent-of-Cisco-IOS-XE-zero-day

Tags: Extentfearstechnology
Previous Post

Sellafield local authority unsure if data was stolen six years on from North Korea ransomware attack

Next Post

Nuclear regulator raps EDF over cyber compliance

Fossil evidence of proboscidean frugivory and its lasting impact on South American ecosystems – Nature

Fossil evidence of proboscidean frugivory and its lasting impact on South American ecosystems – Nature

June 27, 2025
Distrust in public-health institutions is not just an American problem – The Economist

Distrust in public-health institutions is not just an American problem – The Economist

June 27, 2025
Cuts to federal science spending will cost every American – University of California

Cuts to federal science spending will cost every American – University of California

June 27, 2025
CCTA Bests CV Risk Scores for Bolstering Lifestyle Changes, Medication Uptake – TCTMD.com

CCTA Bests CV Risk Scores for Bolstering Lifestyle Changes, Medication Uptake – TCTMD.com

June 27, 2025
TIFF announces first wave of World Premieres! – TIFF – Toronto International Film Festival

TIFF announces first wave of World Premieres! – TIFF – Toronto International Film Festival

June 27, 2025
With no end to war in sight, Ukraine’s economy teeters on the edge – The Washington Post

Ukraine’s Economy on the Edge as Conflict Shows No End in Sight

June 27, 2025
A typical workday for freelancer Ashley Abramson – Association of Health Care Journalists

A Day in the Life of Freelancer Ashley Abramson: Inside Her Dynamic Workday

June 27, 2025
‘This is not a luxury’: Families in Trump states agonize over GOP’s proposed Medicaid cuts – CNN

Families in Trump States Face Hardship Amid GOP’s Push for Major Medicaid Cuts

June 27, 2025
Wayve Expands Engineering Leadership to Power Next-Gen Autonomous Driving Technology – Silicon Canals

Wayve Boosts Engineering Leadership to Accelerate Next-Gen Autonomous Driving Innovation

June 26, 2025
Fantasy Football: Which teams are set to pass the most (and least) in 2025? – Yahoo Sports

Fantasy Football Preview: Which Teams Will Lead the League in Passing Attempts in 2025?

June 26, 2025

Categories

Archives

June 2025
MTWTFSS
 1
2345678
9101112131415
16171819202122
23242526272829
30 
« May    
Earth-News.info

The Earth News is an independent English-language daily published Website from all around the World News

Browse by Category

  • Business (20,132)
  • Ecology (699)
  • Economy (719)
  • Entertainment (21,613)
  • General (15,584)
  • Health (9,758)
  • Lifestyle (724)
  • News (22,149)
  • People (721)
  • Politics (726)
  • Science (15,937)
  • Sports (21,215)
  • Technology (15,703)
  • World (699)

Recent News

Fossil evidence of proboscidean frugivory and its lasting impact on South American ecosystems – Nature

Fossil evidence of proboscidean frugivory and its lasting impact on South American ecosystems – Nature

June 27, 2025
Distrust in public-health institutions is not just an American problem – The Economist

Distrust in public-health institutions is not just an American problem – The Economist

June 27, 2025
  • About
  • Advertise
  • Privacy & Policy
  • Contact

© 2023 earth-news.info

No Result
View All Result

© 2023 earth-news.info

No Result
View All Result

© 2023 earth-news.info

Go to mobile version