Cyber Attack Targets Worldwide Networks, Data Centres in Iran
A cyber attack targeted networks in several countries, more notably Iran-situated data centres. The hack left a picture on the screens showing a USA flag and a threatening message asking not to meddle with the U.S elections.
According to a statement dated April 7 by the Communication and Information Technology Ministry of Iran, the attack seemingly impacted a huge 200,000 router switches globally of which 3,500 switches were in Iran itself.
Moreover, the attack that struck ISPs (internet service providers) as well as prevented subscribers from accessing the Web, materialized because of a security flaw inside routers that Cisco provided after issuing an alert while releasing suitable patch which a few companies overlooked deploying on a public holiday in Iran.
By using Shodan, security investigators' Talos team at Cisco managed uncovering 168,000-and-more computers that were apparently hacked through the Smart Install Client of Cisco. According to the investigators, it's not any security flaw but a problem of misuse of protocol. A Cisco Security Advisory published April 6, nevertheless, describes it one critical flaw. Csoonline.com posted this, April 8, 2018.
Threat Researcher Nick Biasini from the Talos Security Intelligence and Research Group at Cisco in a blog post dated April 5 says many incidents within several countries of which a few particularly aiming at critical infrastructures pertain to wrongly using the Smart Install Client. Consequently, the security company was again urging end-users about the prominent danger along with its remediation.
Mohammad Javad Azari-Jahromi IT Minister of Iran on Twitter put up one photo of PC-screen displaying the USA flag as well as the hacker's missive. Azari-Jahromi stated nothing was still lucid as to who was behind the cyber-attack. As per Kaspersky, no authentication is needed of Cisco's Smart Install protocol so the firm was suggesting how the system admins could be mitigated.
The minister tweeted that MAHER the computer emergency response agency of Iran had pointed out the failures in informing impacted organizations following the hack spotted on April 6 inside Iran. The country's Information Technology Organization deputy head Hadi Sajadi said it was possible to neutralize the attack with no data getting leaked.
» SPAMfighter News - 4/13/2018
We are happy to see you are reading our IT Security News.
We do believe, that the foundation for a good work environment starts with fast, secure and high performing computers. If you agree, then you should take a look at our Business Solutions to Spam Filter & Antivirus for even the latest version of Exchange Servers - your colleagues will appreciate it!