Technology News, Cisco router attacks duck cyber defenses

Cisco router attacks duck cyber defenses, hit 4 countries

Post by: Admin Dept: PHÒNG QUẢN LÝ Date posted: 18/09/2015

101917353-cisco2.530x298.jpg

Justin Solomon | CNBC

Cisco sign at their campus in San Jose, Calif.

Security researchers say they have uncovered previously unknown attacks on routers which direct traffic around the Internet, allowing hackers to harvest vast amounts of data while going undetected by existing cybersecurity defences.

The attacks replace the operating system used in network equipment from Cisco, the world's biggest maker of routers, the computer forensic arm of U.S. security research firm FireEye, Mandiant, said on Tuesday.

So far, Mandiant has found 14 instances of router implants in India, Mexico, Philippines and Ukraine, the company said in a blog post.

Separately, Cisco confirmed that it had alerted customers to these attacks on Cisco operating system software platforms.

The company said that it had worked with Mandiant to develop ways for customers detect the attack, which if found, will require them to re-image the software used to control their routers.

"If you own (seize control of) the router, you own the data of all the companies and government organisations that sit behind that router," FireEye Chief Executive Dave DeWalt said of his company's discovery.

Routers operate outside the perimeter of firewalls, anti-virus and other security tools which organisations around the world use to safeguard data traffic.

Effectively, the $80 billion which technology market research firm IDC estimates is spent annually on cybersecurity tools offer no protection against this form of attack, according to FireEye.

The malicious program has been dubbed "SYNful", a reference to how the implanted software can jump from router to router using their syndication functions.

Computer logs from infected routers suggest the attacks have been taking place for at least a year, FireEye's DeWalt said.

Cisco said SYNful did not take advantage of any vulnerability in its own software. Instead it stole valid network administration credentials from organisations targeted in the attacks or by gaining physical access to their routers.

The affected routers have been used to hit multiple industries and government agencies, DeWalt said.

The implanted software, which duplicates normal router functions, could also potentially affect routers from other makers, he said.

Source: CNBC

Font size

Comments

Latest Posts

Maestro 7.2

Avid Tightly Integrates Advanced Graphics Solution with MediaCentral Platform for Accelerated News Production

Introducing Avid NEXIS E5

Invest in your future with the reliability you need today, the scalability for tomorrow, and the technology to take you beyond. Take your storage to the next level with Avid NEXIS.

HDTV Set Up

How do you calculate the best seat-to-screen distance for a TV or projection screen? Divide the size of your screen by .84 (screen size is measured diagonally). For example, a 65-inch TV divided by .84 equals a 77-inch viewing distance (6.5 feet).

Firefox will leave Flash off by default in 2017

It'll start blocking less-than-essential Flash content in August.

Posted News

Facebook, YouTube, Twitter and Microsoft Sign Hate Speech Agreement

01/06/2016

The annoying Windows 10 upgrade offer gets personified in manga form

23/05/2016

Windows 10 hits 300 million devices as it winds down free upgrades

10/05/2016

Product reference

Pro Tools S3
Pro Tools | S3 - Small format, big mix

Pro Tools | S6
Pro Tools | S6 - New technologies for mixing

Sachtler System 25 EFP 2 CF Tripod System
The Sachtler SYSTEM 25 PLUS Carbon Fiber Tripod System is designed with today's cameraperson using HTDV and Widescreen cameras in mind. The System 25P EFP 2 CF tripod system consists of the, Video 25 Plus fluid head with its seven step, temperature-independent damping system, to capture the naked truth on video or film with perfect clarity.