#persistent-access

[ follow ]
#cisco-catalyst-sd-wan-vulnerability #cve-2026-20127 #authentication-bypass #privilege-escalation #phishing
Information security
fromTechRepublic
1 week ago

5 Nations Alert: Critical Cisco Bug Used in Global Espionage Campaign

A critical Cisco Catalyst SD-WAN vulnerability (CVE-2026-20127) remained undetected for three years before attackers exploited it to bypass authentication, gain root access, and steal data through chained exploitation with older flaws.
fromThe Hacker News
1 month ago

Phishing Attack Uses Stolen Credentials to Install LogMeIn RMM for Persistent Access

Cybersecurity researchers have disclosed details of a new dual-vector campaign that leverages stolen credentials to deploy legitimate Remote Monitoring and Management (RMM) software for persistent remote access to compromised hosts. "Instead of deploying custom viruses, attackers are bypassing security perimeters by weaponizing the necessary IT tools that administrators trust," KnowBe4 Threat Labs researchers Jeewan Singh Jalal, Prabhakaran Ravichandhiran, and Anand Bodke said. "By stealing a 'skeleton key' to the system, they turn legitimate Remote Monitoring and Management (RMM) software into a persistent backdoor."
Information security
[ Load more ]