• Nasty Cisco attack

    Home » Forums » Cyber Security Information and Advisories » Code Red – Security/Privacy advisories » Nasty Cisco attack

    Author
    Topic
    WSFascist Nation
    AskWoody Lounger
    August 19, 2015 at 4:51 pm #501724

    Nasty Cisco Attack

    Schneier on Security

    https://www.schneier.com/blog/archives/2015/08/nasty_cisco_att.html

    This is serious: Cisco Systems officials are warning customers of a series of attacks that completely hijack critical networking gear by swapping out the valid ROMMON firmware image with one that’s been maliciously altered…. [continue reading at above link if interested]

    Reply | Quote
    Viewing 2 reply threads
    Author
    Replies
    • WSSudo
      AskWoody Lounger
      August 19, 2015 at 5:20 pm #1523971

      My Realtek wireless driver includes Cisco Modules – wonder if Realtek are doing anything about it.

      Reply | Quote
    • b
      AskWoody_MVP
      August 19, 2015 at 5:42 pm #1523976

      Needs admin password or physical access though.

      Reply | Quote
      • WSSudo
        AskWoody Lounger
        August 19, 2015 at 5:53 pm #1523977

        I don’t know which firmware my TalkTalk router uses but they can access it remotely using TR069.

        Reply | Quote
        • b
          AskWoody_MVP
          August 19, 2015 at 6:26 pm #1523979

          I don’t know which firmware my TalkTalk router uses but they can access it remotely using TR069.

          Without a password?

          Reply | Quote
          • WSSudo
            AskWoody Lounger
            August 20, 2015 at 3:04 am #1524037

            Without a password?

            Yes – I’ve seen there is an Admin URL path they can use in the router Tools section, although I have the option to turn TR069 off.

            This router gets auto firmware updates when there are any and on one occasion when I noticed that Interleaving was Off, I phoned TT and they enabled it although I think that is something they have to do at their end rather than a setting in the router, as I haven’t seen any UI settings for that.

            Reply | Quote
    • wavy
      AskWoody Plus
      August 23, 2015 at 1:21 pm #1524632

      Well if you are already exec you already own it. 😎

      :cheers:

      🍻

      Just because you don't know where you are going doesn't mean any road will get you there.
      Reply | Quote
    Viewing 2 reply threads
    Reply To: Nasty Cisco attack

    You can use BBCodes to format your content.
    Your account can't use all available BBCodes, they will be stripped before saving.

    Your information:




DON'T MISS OUT!
Subscribe to the Free Newsletter
We promise not to spam you. Unsubscribe at any time.
Invalid email address

View the Forum

  • Recent Replies
  • My Replies
  • My Active Topics
  • New Posts in the Last day
  • Private Messages
  • Knowledge Base
  • How to use the Forums
  • All Forums

    • Recent Topics

    My Profile

    May 2025
    S M T W T F S
     123
    45678910
    11121314151617
    18192021222324
    25262728293031

    Remembering Woody

     

    Want to Advertise in the free newsletter? How about a gift subscription in honor of a birthday? Send an email to sb@askwoody.com to ask how.

    Mastodon profile for DefConPatch
    Mastodon profile for AskWoody

     

    Home About FAQ Posts & Privacy Forums My Account
    Register Free Newsletter Plus Membership Gift Certificates MS-DEFCON Alerts

    Copyright ©2004-2025 by AskWoody Tech LLC. All Rights Reserved.