Moscow (Sputnik) – the recent cyber attack that exploits vulnerabilities in Cisco switches, targeted at Russian-speaking segment of the Internet security and anti-virus vendor Kaspersky Lab said on Saturday.
Global hack attack who used the shortcomings in the equipment of Cisco was held on Friday. A vulnerability in the Cisco devices that can support smart Install technology has allowed hackers to create a program intrusion switch with the securing of the delete existing information and replace it with your own files. According to the company Cisco, thousands of devices in different countries were vulnerable to attack. The company warns its users about the vulnerability and released a patch to fix the flaw.
“It seems that the attack mainly focused on the Russian-speaking Internet segment, but other segments more or less recovered,” Kaspersky Lab said in the blog.
The company explained that the attack was carried out via software vulnerabilities.
“Unknown actor threats use vulnerabilities in the software titled Cisco Smart install client that allows you to execute arbitrary code on the affected switches. The attackers then switch Cisco iOS image on the switch and change the configuration file, leaving the message ‘don’t mess with no elections,” said the company.
As a result, then the switch becomes unavailable, he added.
As the Cisco switches are widely used in data centers, this leads to inaccessibility of many popular sites, the company said.
“Kaspersky lab” also provides instructions for system administrators how to troubleshoot and repair the Vulnerability.
Sourse: sputniknews.com
