Cisco Takes Measures Against NSA Exploit Cyberweapon
On Wednesday, Aug. 24, Cisco Systems has released some security patches for a critical flaw in Adaptive Security Appliance (ASA) firewalls found to be the target of an exploit cyberweapon linked to the U.S. National Security Agency (NSA). Security analysts expect that the networking company will soon release more fixes.
Cisco Firewalls Vulnerable To NSA's ExtraBacon Exploit
The security flaw in Cisco's ASA firewalls is exploited by a cyberweapon dubbed ExtraBacon. According to cybersecurity experts, this is one of the tools used by the Equation, a group believed to be a cyberespionage team linked to the NSA.
According to Computerworld, earlier this month the ExtraBacon exploit was released together with other exploits by a hacker group using the name Shadow Brokers. The group has put up online for auction files provided as a sample of a larger Equation set of hacking and cyberweapon tools.
A buffer overflow vulnerability is exploited by the ExtraBacon tool in the Simple Network Management Protocol (SNMP) implementation from Cisco's Adaptive Security Appliance software. According to TechTarget, after researches found an easy way to modify the SNMP exploit, the danger of the NSA-linked ExtraBacon exploit grew. The cyberweapon could be easily made to be effective against newer versions of Cisco's ASA software.
As long as they can send traffic to their SNMP interface on the affected devices, attackers can remotely execute rogue code. The only thing typically required in order to remotely execute rogue code on Cisco affected firewalls is being on the same internal network as the targeted devices.
As a measure against the NSA exploit cyberweapon, the networking company Cisco Systems updated its advisory in order to announce the availability of patched versions. The fixes come for different Cisco ASA branches, including 9.1.7(9), 9.5(3) and 9.6.1(11). According to the vendor, it is recommended to update devices using ASA software versions from the 8.x and 7.x branches to version 9.1.7(9).
The Cisco Firewall Services Module (FWSM), the Cisco Firepower Threat Defense (FTD) Software and Cisco PIX Firewalls are also affected by this vulnerability, in addition to ASA software. No patches will be provided for Cisco PIX Firewalls and Cisco Firewall Service Modules that have reached their end of life, but software version 6.0.1(2) was released for Cisco FTD.
Previous Microsoft Windows Patches Fixed Newly Leaked NSA Exploits
Microsoft announced it has already patched vulnerabilities reported in Friday’s high-profile leak of suspected U.S. NSA spying tools. This means that customers should be protected if they’ve kept their software up-to-date.
Powerful NSA Spy Tools Leaked Online Should Make You Really Nervous
NSA reportedly has its powerful spy tools leaked online. The spy tools could be used to hack any vulnerabilities present in Windows and could be potentially damaging.
Attackers Widely Exploiting A Recently Patched Vulnerability In Apache Struts
Given the availability of patches and detection rules, it’s likely that public attacks are going to be largely mitigated and as more detection rules surface, public exploits should be less useful to attackers.
Edward Snowden´s Documents Reveal That Peter Thiel Helped NSA
Considering that Peter Thiel´s company helped to develop NSA´s spy program, it remains unknown how could the relationship between the Silicon Valley and Donald Trump´s administration prosper from now on.
Mobile Video Consumption Will Have Massive Increase By 2021
Fueled by the rapid development in Virtual Reality (VR) and Augmented Reality (AR), Cisco predicts that mobile video usage will see an incremental increase by 2021.
NSA Chief Reveals That WikiLeaks Disclosures During The US Elections Were Planned By A Nation-State
Pro-Kremlin analyst Sergey Markov, recently confessed that Russia might have helped WikiLeaks in its disclosures, in order to discredit Hilary Clinton and get Donald Trump elected as the new President.
MORE IN ITECHPOST
OnePlus 3T Gets HydrogenOS Based Android 8.0 Oreo Leaked Firmware [Download]
Here is the download link for the leaked Android Oreo firmware for OnePlus 3T devices.
'Tokyo Ghoul' Season 3 Delayed By Its Live-Action Movie? Ken Kenaki Returns With Another Identity?
"Tokyo Ghoul" season 3's release is delayed and there are countless speculations as to why it is being pushed back. Reports claim that the show is to give way to "One Punch Man" and "My Hero Acdemia" but new rumors say that it's lack of materials and storyline as well as its live-action movie are causing the delay.
‘Dishonored: Death of the Outsider’: How to Fix ‘Game Not Launching’ and other PC Errors
Game Not Launching’ hotfix and other fixes now available for ‘Dishonored: Death of the Outsider’ DLC on PC.