Hackers Exploit Cisco ASA Vulnerability After PoC Exploit

Share post:

According to a proof-of-concept (PoC) exploits released on Thursday by researchers of the Positive Technologies Offensive Team for the Cisco ASA CVE-2020-3580 vulnerability, hackers are now exploiting a vulnerability tracked as CVE-2020-3580 in Cisco ASA devices.

The vulnerability, which allows an unauthenticated threat actor to send targeted phishing emails or malicious links to a user of a Cisco ASA device to execute JavaScript commands in the user’s browser, was first disclosed and fixed by Cisco in October 2020.

While the original fix was deemed inadequate, a later fix was published in April 2021.

For more information, read the original story in Bleeping Computer.


Related articles

Cyber Security Today, May 20, 2024 -Ransomware gang claims it hit a Canadian internet provider

A ransomware gang claims it hit a Canadian internet provider. Welcome to Cyber Security Today. It's Monday May 20th,...

Cyber Security Today, Week in Review for week ending Friday May 17, 2024

Welcome to Cyber Security Today. This is the Week in Review for the week ending Friday, May 17th,...

Cyber Security Today, May 17, 2024 – Malware hiding in Apache Tomcat servers

Malware hiding in Apache Tomcat servers, new backdoors found, and more Welcome to Cyber Security Today. It's Friday, May...

MIT students exploit blockchain vulnerability to steal 25 million dollars

Two MIT students have been implicated in a highly sophisticated cryptocurrency heist, where they reportedly exploited a vulnerability...

Become a member

New, Relevant Tech Stories. Our article selection is done by industry professionals. Our writers summarize them to give you the key takeaways