ExplorineerExplorineer
EnglishKoreanJapaneseVietnamese

Cisco says hackers have been exploiting a critical bug to break into bigcustomer networks since 2023

Cisco says hackers have been exploiting a critical bug to break into bigcustomer networks since 2023

Cisco reports that hackers have exploited a critical bug in its Catalyst SD-WAN products since 2023, allowing unauthorized access to large enterprise networks. The U.S. government and allies urge organizations to secure their systems, as recent alerts highlight ongoing threats. CISA mandated federal agencies to patch their systems, citing severe risks, while Cisco highlighted evidence tracing back three years, affecting critical infrastructure operations.

Key Points

  • Cisco identified a critical vulnerability with a severity score of 10.0 in its Catalyst SD-WAN products.
  • The bug enables hackers to gain remote access and maintain hidden control over the networks of major corporations and government agencies.
  • Exploration of the vulnerability dates back to at least 2023, raising urgent concerns among U.S. and allied governments.
  • Affected entities include critical infrastructure sectors like power, water, and transportation.
  • Governments such as Australia, Canada, New Zealand, the UK, and the US issued warnings about the ongoing exploitation.
  • The CISA ordered federal agencies to implement patches due to imminent threats, emphasizing the vulnerability's unacceptable risk.
  • Cisco has linked some hacking activities to a cluster called UAT-8616 but has not identified specific attackers.

Relevance

  • This situation reflects broader concerns about network security amid increasing cyber threats seen in 2025 IT trends.
  • The vulnerability of critical infrastructure to cyber attacks has been a significant topic in recent years, with heightened scrutiny on network defenses.
  • The urgency from the U.S. government showcases the ongoing push for enhanced cybersecurity measures, especially with rising attacks targeting critical sectors.

The discovery of this critical bug highlights ongoing cybersecurity vulnerabilities and the pressing need for enhanced protective measures as global threats escalate, particularly against critical infrastructure.

Download the App

Stay ahead in just 10 minutes a day

Article ID: 363d528b-2a77-42c2-a321-3bd2e473a4a2