Hackers Exploit Cisco ASA Vulnerability After PoC Exploit

Share post:

According to a proof-of-concept (PoC) exploits released on Thursday by researchers of the Positive Technologies Offensive Team for the Cisco ASA CVE-2020-3580 vulnerability, hackers are now exploiting a vulnerability tracked as CVE-2020-3580 in Cisco ASA devices.

The vulnerability, which allows an unauthenticated threat actor to send targeted phishing emails or malicious links to a user of a Cisco ASA device to execute JavaScript commands in the user’s browser, was first disclosed and fixed by Cisco in October 2020.

While the original fix was deemed inadequate, a later fix was published in April 2021.

For more information, read the original story in Bleeping Computer.

SUBSCRIBE NOW

Related articles

Sleeper Supply Chain Attack Activates After 6 Years

A coordinated supply chain attack has compromised between 500 and 1,000 e-commerce websites by exploiting vulnerabilities in 21...

Russian-Controlled Open Source Tool Raises Alarms Over U.S. Cybersecurity

A widely used open-source Go library, easyjson, used in healthcare, finance and even defence has come under scrutiny...

Signal Archiving Tool Used By Trump Admin Is Breached, Raising Alarms Over Messaging Security (EDITORIAL)

(EDITORIAL) A messaging tool used by Trump administration officials to archive encrypted Signal messages has been hacked —...

Anthropic Warns: AI “Virtual Employees” Could Pose Security Risks Within a Year

Anthropic, a leading artificial intelligence company, anticipates that AI-powered virtual employees could begin operating within corporate networks as...

Become a member

New, Relevant Tech Stories. Our article selection is done by industry professionals. Our writers summarize them to give you the key takeaways