* . *
  • About
  • Advertise
  • Privacy & Policy
  • Contact
Wednesday, July 23, 2025
Earth-News
  • Home
  • Business
  • Entertainment
    Black Box Players presents ‘The Three Musketeers’ – CBS 19 News

    Experience the Adventure: Black Box Players Bring ‘The Three Musketeers’ to Life!

    AP Entertainment SummaryBrief at 1:51 p.m. EDT – Channel 3000

    Entertainment Highlights: Key Updates You Can’t Miss

    ‘Devil Wears Prada 2’ casts Anne Hathaway’s love interest replacing Adrian Grenier’s Nate – Entertainment Weekly

    Devil Wears Prada 2′ Casts New Love Interest for Anne Hathaway, Replacing Adrian Grenier’s Nate

    12 ‘Late Show’ Moments Proving Stephen Colbert Can’t Be Replaced – The Mountaineer

    12 Unforgettable ‘Late Show’ Moments That Prove Stephen Colbert Is Truly One of a Kind

    Canes owner Tom Dundon’s real estate firm eyes entertainment complex near RDU – The Business Journals

    Canes Owner Tom Dundon’s Real Estate Firm Unveils Plans for Thrilling New Entertainment Complex Near RDU

    Inspired Entertainment, Inc.’s (NASDAQ:INSE) Price Is Right But Growth Is Lacking After Shares Rocket 29% – simplywall.st

    Inspired Entertainment Soars 29% but Growth Momentum Falls Short

  • General
  • Health
  • News

    Cracking the Code: Why China’s Economic Challenges Aren’t Shaking Markets, Unlike America’s” – Bloomberg

    Trump’s Narrow Window to Spread the Truth About Harris

    Trump’s Narrow Window to Spread the Truth About Harris

    Israel-Gaza war live updates: Hamas leader Ismail Haniyeh assassinated in Iran, group says

    Israel-Gaza war live updates: Hamas leader Ismail Haniyeh assassinated in Iran, group says

    PAP Boss to Niger Delta Youths, Stay Away from the Protest

    PAP Boss to Niger Delta Youths, Stay Away from the Protest

    Court Restricts Protests In Lagos To Freedom, Peace Park

    Court Restricts Protests In Lagos To Freedom, Peace Park

    Fans React to Jazz Jennings’ Inspiring Weight Loss Journey

    Fans React to Jazz Jennings’ Inspiring Weight Loss Journey

    Trending Tags

    • Trump Inauguration
    • United Stated
    • White House
    • Market Stories
    • Election Results
  • Science
  • Sports
  • Technology
    Sustainserv and Palau Announce Technology Partnership to Leverage Innovative AI Platform to Advance Sustainability Reporting – Business Wire

    Sustainserv and Palau Team Up to Transform Sustainability Reporting with Breakthrough AI Technology

    Morgan Adamski Joins PwC in Newly Created Cyber, Data & Technology Risk Division – HSToday

    Morgan Adamski Leads the Charge in PwC’s Cutting-Edge Cyber, Data & Technology Risk Division

    Transformative technology, support for food entrepreneurs spotlighted – University of Hawaii System

    How Cutting-Edge Technology and Strong Support Are Revolutionizing Food Entrepreneurs’ Success

    Cold Weather Alloy Opens New Possibilities for Space Technology – Universe Today

    Revolutionary Cold Weather Alloy Unlocks New Frontiers in Space Technology

    Defence Holdings PLC Transitions from Esports to Pioneering Defence Technology

    Bull of the Day: Credo Technology Group (CRDO) – Yahoo Finance

    Bull of the Day: Why Credo Technology Group (CRDO) Is Poised for a Breakout

    Trending Tags

    • Nintendo Switch
    • CES 2017
    • Playstation 4 Pro
    • Mark Zuckerberg
No Result
View All Result
  • Home
  • Business
  • Entertainment
    Black Box Players presents ‘The Three Musketeers’ – CBS 19 News

    Experience the Adventure: Black Box Players Bring ‘The Three Musketeers’ to Life!

    AP Entertainment SummaryBrief at 1:51 p.m. EDT – Channel 3000

    Entertainment Highlights: Key Updates You Can’t Miss

    ‘Devil Wears Prada 2’ casts Anne Hathaway’s love interest replacing Adrian Grenier’s Nate – Entertainment Weekly

    Devil Wears Prada 2′ Casts New Love Interest for Anne Hathaway, Replacing Adrian Grenier’s Nate

    12 ‘Late Show’ Moments Proving Stephen Colbert Can’t Be Replaced – The Mountaineer

    12 Unforgettable ‘Late Show’ Moments That Prove Stephen Colbert Is Truly One of a Kind

    Canes owner Tom Dundon’s real estate firm eyes entertainment complex near RDU – The Business Journals

    Canes Owner Tom Dundon’s Real Estate Firm Unveils Plans for Thrilling New Entertainment Complex Near RDU

    Inspired Entertainment, Inc.’s (NASDAQ:INSE) Price Is Right But Growth Is Lacking After Shares Rocket 29% – simplywall.st

    Inspired Entertainment Soars 29% but Growth Momentum Falls Short

  • General
  • Health
  • News

    Cracking the Code: Why China’s Economic Challenges Aren’t Shaking Markets, Unlike America’s” – Bloomberg

    Trump’s Narrow Window to Spread the Truth About Harris

    Trump’s Narrow Window to Spread the Truth About Harris

    Israel-Gaza war live updates: Hamas leader Ismail Haniyeh assassinated in Iran, group says

    Israel-Gaza war live updates: Hamas leader Ismail Haniyeh assassinated in Iran, group says

    PAP Boss to Niger Delta Youths, Stay Away from the Protest

    PAP Boss to Niger Delta Youths, Stay Away from the Protest

    Court Restricts Protests In Lagos To Freedom, Peace Park

    Court Restricts Protests In Lagos To Freedom, Peace Park

    Fans React to Jazz Jennings’ Inspiring Weight Loss Journey

    Fans React to Jazz Jennings’ Inspiring Weight Loss Journey

    Trending Tags

    • Trump Inauguration
    • United Stated
    • White House
    • Market Stories
    • Election Results
  • Science
  • Sports
  • Technology
    Sustainserv and Palau Announce Technology Partnership to Leverage Innovative AI Platform to Advance Sustainability Reporting – Business Wire

    Sustainserv and Palau Team Up to Transform Sustainability Reporting with Breakthrough AI Technology

    Morgan Adamski Joins PwC in Newly Created Cyber, Data & Technology Risk Division – HSToday

    Morgan Adamski Leads the Charge in PwC’s Cutting-Edge Cyber, Data & Technology Risk Division

    Transformative technology, support for food entrepreneurs spotlighted – University of Hawaii System

    How Cutting-Edge Technology and Strong Support Are Revolutionizing Food Entrepreneurs’ Success

    Cold Weather Alloy Opens New Possibilities for Space Technology – Universe Today

    Revolutionary Cold Weather Alloy Unlocks New Frontiers in Space Technology

    Defence Holdings PLC Transitions from Esports to Pioneering Defence Technology

    Bull of the Day: Credo Technology Group (CRDO) – Yahoo Finance

    Bull of the Day: Why Credo Technology Group (CRDO) Is Poised for a Breakout

    Trending Tags

    • Nintendo Switch
    • CES 2017
    • Playstation 4 Pro
    • Mark Zuckerberg
No Result
View All Result
Earth-News
No Result
View All Result
Home Technology

Fears grow over extent of Cisco IOS XE zero-day

October 19, 2023
in Technology
Fears grow over extent of Cisco IOS XE zero-day
Share on FacebookShare on Twitter

Skórzewiak – stock.adobe.com

Researchers have identified spiking numbers of victims of a recently disclosed Cisco zero-day, as users of the networking supplier’s IOS XE software are urged to take defensive measures

Alex Scroxton

By

Alex Scroxton,
Security Editor

Published: 19 Oct 2023 16:45

Three days after Cisco disclosed details of a dangerous zero-day in its IOS XE software, known compromises appear to be rising at a rapid rate, with thousands of victims, many of them high-profile telecoms companies, beginning to be identified.

CVE-2023-20198 enables a remote, unauthenticated attacker to set up an account on a vulnerable system with elevated privileges, which they can then use to take over the victim’s systems. Affected customers will all have enabled the web UI feature through the ip http server or ip http secure-server commands.

It was uncovered by Cisco’s teams while responding to tech support tickets, but not before an as-yet undisclosed threat actor or actors exploited it to deploy an implant enabling them to execute arbitrary commands at system or IOS level.

According to threat intelligence provided by Censys, a threat-hunting and exposure-management specialist, the number of infections spiked by over 7,000 in the space of 24 hours from 17 to 18 October, rising from 34,140 to 41,983 compromised hosts out of a total of 67,445 it identified as using the vulnerable service.

Censys said the majority of these hosts are located in the US, with approximately 6,509 infections, followed by the Philippines, Mexico and Chile. There are also over 1,000 infected hosts apiece in India, Peru, Thailand, Brazil and Singapore. Contacted by Computer Weekly, Censys said its scans had identified 673 infections in the UK as of 18 October.

Others say the scale of the compromise may be even greater. Our sister title, TechTarget Security, cited Netlas.io, which said it had seen over 80,000 exposed and vulnerable hosts as of the morning of Tuesday 17 September.

Writing in a blog post on 17 September, VulnCheck’s Jacob Baines said: “Cisco buried the lede by not mentioning thousands of internet-facing IOS XE systems have been implanted. VulnCheck scanned internet-facing Cisco IOS XE web interfaces and found thousands of implanted hosts. This is a bad situation, as privileged access on the IOS XE likely allows attackers to monitor network traffic, pivot into protected networks, and perform any number of man-in-the-middle attacks.”

All victims great and small

The Censys research team additionally shared data on the most impacted organisations, finding evidence that major communications services providers (CSPs) around the world, in particular Asia-Pacific and Latin America, are bearing the brunt of the problem. This may magnify the impact down the supply chain to their customers, they warned.

“What characteristics do most of these … systems share? They predominantly represent telecommunications companies offering internet services to both households and businesses,” said the Censys team.

“As a result, the primary targets of this vulnerability are not large corporations but smaller entities and individuals who are more susceptible.”

Meanwhile, the US Cybersecurity and Infrastructure Security Agency has added CVE-2023-20198 to its Known Exploited Vulnerabilities catalogue, obliging US federal bodies to take steps to mitigate its impact or discontinue usage of the affected software altogether by Friday 20 October.

Users have until 9 November to address a different, older vulnerability tracked as CVE-2021-1435, that is being chained to deliver the malicious implant.

Read more on Application security and coding requirements


Cisco IOS XE zero-day facing mass exploitation

AlexanderCulafi

By: Alexander Culafi


Alert sounded over dangerous Cisco IOS XE zero-day

AlexScroxton

By: Alex Scroxton


Cisco working on fix for critical IOS XE zero-day

AlexanderCulafi

By: Alexander Culafi


Censys finds hundreds of exposed devices in federal orgs

AlexanderCulafi

By: Alexander Culafi

>>> Read full article>>>
Copyright for syndicated content belongs to the linked Source : Computer Weekly – https://www.computerweekly.com/news/366556337/Fears-grow-over-extent-of-Cisco-IOS-XE-zero-day

Tags: Extentfearstechnology
Previous Post

Sellafield local authority unsure if data was stolen six years on from North Korea ransomware attack

Next Post

Nuclear regulator raps EDF over cyber compliance

Sustainserv and Palau Announce Technology Partnership to Leverage Innovative AI Platform to Advance Sustainability Reporting – Business Wire

Sustainserv and Palau Team Up to Transform Sustainability Reporting with Breakthrough AI Technology

July 23, 2025
M’s Announce MiLB Telecasts on ROOT SPORTS – MLB.com

M’s Announce MiLB Telecasts on ROOT SPORTS – MLB.com

July 23, 2025
Heat wave causing myriad problems for Lake Erie’s ecology – Toledo Blade

Scorching Heat Wave Triggers Major Ecological Crisis in Lake Erie

July 23, 2025
Put the Phone Down, Kid. Science Says So. – 105.7 WROR

Why You Should Tell Your Kid to Put the Phone Down-Science Has Spoken

July 23, 2025
CRISPR uncovers gene that supercharges vitamin D—and stops tumors in their tracks – ScienceDaily

CRISPR Uncovers Gene That Supercharges Vitamin D and Stops Tumor Growth

July 23, 2025
Equity LifeStyle Properties Inc reports results for the quarter ended June 30 – Earnings Summary – TradingView

Equity LifeStyle Properties Inc Reports Impressive Q2 Earnings for June 30

July 23, 2025
The Ukraine war will shape the world – Financial Times

How the Ukraine War Is Shaping the Future of Our World

July 23, 2025
7 of the Best Freebies You Can Get in Economy—Meals, Alcoholic Drinks, and Toys Included – Yahoo Home

7 of the Best Freebies You Can Get in Economy—Meals, Alcoholic Drinks, and Toys Included – Yahoo Home

July 23, 2025
Black Box Players presents ‘The Three Musketeers’ – CBS 19 News

Experience the Adventure: Black Box Players Bring ‘The Three Musketeers’ to Life!

July 23, 2025
Opinion | U.S. Global Health Aid Is an Exemplar of Efficiency – The Wall Street Journal

How U.S. Global Health Aid Leads the Way in Efficiency and Impact

July 23, 2025

Categories

Archives

July 2025
MTWTFSS
 123456
78910111213
14151617181920
21222324252627
28293031 
« Jun    
Earth-News.info

The Earth News is an independent English-language daily published Website from all around the World News

Browse by Category

  • Business (20,132)
  • Ecology (735)
  • Economy (758)
  • Entertainment (21,642)
  • General (16,058)
  • Health (9,796)
  • Lifestyle (766)
  • News (22,149)
  • People (760)
  • Politics (767)
  • Science (15,975)
  • Sports (21,256)
  • Technology (15,741)
  • World (741)

Recent News

Sustainserv and Palau Announce Technology Partnership to Leverage Innovative AI Platform to Advance Sustainability Reporting – Business Wire

Sustainserv and Palau Team Up to Transform Sustainability Reporting with Breakthrough AI Technology

July 23, 2025
M’s Announce MiLB Telecasts on ROOT SPORTS – MLB.com

M’s Announce MiLB Telecasts on ROOT SPORTS – MLB.com

July 23, 2025
  • About
  • Advertise
  • Privacy & Policy
  • Contact

© 2023 earth-news.info

No Result
View All Result

© 2023 earth-news.info

No Result
View All Result

© 2023 earth-news.info

Go to mobile version