200,000 'cisco' Network Switches Apparently Hacked
Over 200,000 'cisco' network switches worldwide were hacked Friday, apparently affecting large isps and knowledge centers around the globe, particularly in Iran, Russia, the US. China, States, Europe and India,Indoor Access Point based on an Iranian government official.
But Motherboard reports that somebody in charge of their email left within the note on affected machines told the publication: "I was fed up with attacks from government-backed online hackers around the US. States along with other countries."
Tim Erlin, smoking president at Tripwire, notes: "For the reported motivations from the attackers at face value, then you've to see compromised devices within the U.S. as collateral damage. It had not been their intent to focus on them, however the internet does not also have obvious national borders."
Avivah Litan, v . p . at Gartner Research, offers insights on who may be responsible. "Since the attack is really visible, it appears a lot more like the job of anarchic hactivists like Anonymous, who make anarchistic political statements in an exceedingly visible way," she states. "My take would be that the more visible the threat, the less harmful it's. This option appears like a lot of crazy, over-the-top, angry amateur online hackers looking to get global attention. I would not search for much logic within their targets - apart from they are made to have them probably the most attention."
Mounir Hahad, mind of Juniper Threat Labs at Juniper Systems, adds: "This does not seem like a significant cyberattack with a well-funded and organized threat actor [nation-condition]. The vulnerability is severe enough to result in lots of implant and damage a guy-in-the-middle agent, however it does not seem like the attacker required benefit of it. I believe this is actually the work of the hacktivist group with sympathy toward the U.S., which in fact had no intention to cause serious damage."
Iran's minister for knowledge and communication technology, Mohammad Javad Azari-Jahromi, states inside a statement: "The attack apparently affected 200,000 router switches around the globe inside a prevalent attack, including 3,500 switches within our country."
About 55,000 devices were affected within the U.S. and 14,000 in China other victims were situated in Europe and India, Azari-Jahromi reports.The hacker attack on 'cisco' router equipment apparently exploited a vulnerability in software known as 'cisco' Smart Install Client, which enables online hackers to operate arbitrary code around the vulnerable switches, based on your blog by Kaspersky Lab.
The online hackers apparently reset the targeted devices, which makes them unavailable for reconfiguration and departing a note that reads: "Don't wreck havoc on our election," displaying a U.S. flag on some screens, Kaspersky Lab explains.
The statement from Iran's Azari-Jahromi states the attack, which hit isps and stop web access for subscribers, was thanks to a vulnerability in routers from 'cisco', which in fact had earlier issued an alert and provided an area that some firms had unsuccessful to set up within the Iranian Year holiday.