Fidest – Agenzia giornalistica/press agency

Quotidiano di informazione – Anno 31 n° 301

Red Balloon Security Discovers Critical Vulnerability in Millions of Cisco Switches, Routers, and Firewalls

Posted by fidest press agency su mercoledì, 15 maggio 2019

The vulnerability, codenamed “Thrangrycat,” is caused by a series of hardware design flaws within Cisco’s Trust Anchor module. First commercially introduced in 2013, Cisco Trust Anchor module (TAm) is a proprietary hardware security module that is used in a wide range of Cisco products, including enterprise routers, switches and firewalls. TAm is the root of trust that underpins all other Cisco security and trustworthy computing mechanisms in these devices. The Thrangrycat vulnerability allows an attacker to make persistent modification to the Trust Anchor module via remote exploitation, thereby defeating the secure boot process and invalidating Cisco’s chain of trust at its root. While the flaws are based in hardware, Thrangrycat can be exploited remotely without any need for physical access. Since the Thrangrycat flaws reside within the hardware design, it is unlikely that any software security patch will fully resolve the fundamental security vulnerability.Thrangrycat is remotely exploitable and provides attackers with a reliable backdoor into highly secure networks, allowing them to bypass even rigorous cybersecurity defenses in order to gain full and persistent access inside the network. An attacker could remotely exploit this vulnerability to intercept communications, steal or manipulate data, install stealthy implants and carry out further attacks on other connected devices. Red Balloon Security researchers have demonstrated physical destruction of Cisco routers by leveraging Thrangrycat via remote exploitation.Red Balloon Security has been working closely with Cisco’s Product Security Incident Response Team (PSIRT) to address this vulnerability, and commends PSIRT for its fast and diligent response.For more technical details about Thrangrycat, visit http://www.thrangrycat.com.

Rispondi

Inserisci i tuoi dati qui sotto o clicca su un'icona per effettuare l'accesso:

Logo WordPress.com

Stai commentando usando il tuo account WordPress.com. Chiudi sessione /  Modifica )

Google photo

Stai commentando usando il tuo account Google. Chiudi sessione /  Modifica )

Foto Twitter

Stai commentando usando il tuo account Twitter. Chiudi sessione /  Modifica )

Foto di Facebook

Stai commentando usando il tuo account Facebook. Chiudi sessione /  Modifica )

Connessione a %s...

 
%d blogger hanno fatto clic su Mi Piace per questo: