After announcing that the Cisco Product Security Incident Response Team (PSIRT) is aware of attempts at malicious use of a major vulnerability in their devices last week, Cisco is now pushing organizations using their devices to patch the vulnerability as soon as possible. Experts revealed that there is a gap in the security of Cisco’s Adaptive Security Appliance (ASA) that allows hackers to take control of a system remotely. It could also lead to massive Denial-of-Service attacks in affected systems.
Cisco has released software to resolve the vulnerability as well as updates to fix past patches, covering all available avenues of attack from hackers. As of now, Cisco has reported seeing multiple attempts at exploiting the vulnerability in the wild, though the company has been unclear on the exact nature of the attack.
For now, Cisco and the Australian Cyber Security Centre (ACSC) both strongly urge companies utilizing Cisco devices to download the latest patches immediately.