News

Hundreds of Cisco Switches Vulnerable to Simple CIA Hacking Command

 

One of the revelations that will always astonish me is the pervasiveness and efficiency of state surveillance. Recently, the CIA had an internal wiki database exposed through WikiLeaks. Hearkening back to the days of the Snowden revelations, we are now discovering that he intelligence agency is sitting on a treasure trove of exploits and vulnerabilities. The latest gold mine is a vulnerability that impacts at least 318 different models of Cisco network switches.

Switches are critical to networks as all communication runs through them. Using a bug in the Cisco Cluster Management Protocol, attackers can use the telnet protocol to send malicious code to the switch. Due to the way telnet is handled on the switches, there is no limit on the code the attacker can tell the switch to run, allowing them full access. Once the attacker is in, all of the unsecured internal communication going over the switches can be eavesdropped easily.

For now, Cisco is suggesting that customer disable telnet on their switches. However, there are likely other exploits that Cisco is not yet aware of, or not yet willing to disclose until they have a fix. Switches have long been a target due to their role in networks, with the NSA going as far as to intercept physical shipments to tamper with them. Due to the size of the CIA breach, we can expect many more vulnerabilities to be disclosed over the coming days and weeks for pretty much every technology product worth hacking.

Samuel Wan

Samuel joined eTeknix in 2015 after becoming engrossed in technology and PC hardware. With his passion for gaming and hardware, tech writing was the logical step to share the latest news with the world. When he’s not busy dreaming about the latest hardware, he enjoys gaming, music, camping and reading.

Disqus Comments Loading...

Recent Posts

NVIDIA Releases GeForce 561.09 WHQL Game Ready Driver with DLSS 3 Optimizations

NVIDIA has released the GeForce 561.09 WHQL Game Ready driver, which brings enhancements for popular…

8 hours ago

Intel Core i9-14900K CPUs Unavailable, Synnex Issues Refunds in Hong Kong

Intel customers in Hong Kong are facing a significant challenge as the Core i9-14900K CPUs…

8 hours ago

Intel Core Ultra 7 265KF Rivals i9-14900K, Beats i7-14700KF by 34%

Intel's upcoming Core Ultra 7 265KF has made waves in recent benchmarks, showing strong performance…

9 hours ago

Sony to Sell Refurbished PS5 Consoles Ahead of PS5 Pro Launch

Sony Interactive Entertainment has announced plans to sell refurbished PlayStation 5 consoles through its PlayStation…

9 hours ago

Call of Duty Black Ops 6 Breaks Records With Its Biggest Beta Ever

Call of Duty Black Ops 6 has shattered records with its recent open beta, becoming…

9 hours ago

Palworld PS5 Version Leak Before Tokyo Game Show Suggests Imminent Announcement

The popular survival game Palworld seems set to make its PlayStation 5 debut, according to…

9 hours ago