Hackers Exploit Cisco ASA Vulnerability After PoC Exploit

June 28, 2021

According to a proof-of-concept (PoC) exploits released on Thursday by researchers of the Positive Technologies Offensive Team for the Cisco ASA CVE-2020-3580 vulnerability, hackers are now exploiting a vulnerability tracked as CVE-2020-3580 in Cisco ASA devices.

The vulnerability, which allows an unauthenticated threat actor to send targeted phishing emails or malicious links to a user of a Cisco ASA device to execute JavaScript commands in the user’s browser, was first disclosed and fixed by Cisco in October 2020.

While the original fix was deemed inadequate, a later fix was published in April 2021.

For more information, read the original story in Bleeping Computer.

Hackers Exploit Cisco ASA Vulnerability After PoC Exploit

Top Stories

SpaceX shares fall 20% from peak following $60 billion cursor acquisition

Snap unveils first consumer AR glasses priced at more than $2,000

Key U.S. data center law faces expiration with no replacement in sight

Starlink introduces $10 monthly hardware rental fee

Hackers used Meta’s AI support bot to hijack 20,000 Instagram accounts

Meta faces backlash after facial recognition code found in smart glasses app

Related Articles

Hackers used Meta’s AI support bot to hijack 20,000 Instagram accounts

New ‘HTTP/2 Bomb’ attack can crash major web servers from a single computer

CISA exposed internal passwords and cloud keys in public repository

Canvas restores service after cyberattack disrupted schools and universities

TND News Desk

TND News Desk

Jim Love