Skip to main content
close search
site logo
Dive Brief

Cisco, Fortinet release patches for NSA exploits

Published Aug. 19, 2016
By
Contributing Editor
Dollar Photo Club

Dive Brief:

  • Cisco and Fortinet announced they have made patches available for exploits made public after an alleged hack of NSA malware.
  • The release of patches appears to be further confirmation that at least some of the exploits are legitimate.
  • Cisco’s PIX and ASA firewalls and versions of Fortinet’s Fortigate firewalls are affected.

Dive Insight:

On Saturday a hacking group, dubbed the Shadow Brokers, claimed to have stolen hacking tools that belong to the National Security Agency, CSO Online reports. The group was auctioning the tools on the Internet over the weekend. After examining the tools more closely, researchers say they suspect Russia is behind the theft, though they are still not sure how or when the theft occurred. 

Cisco says the threat level of one of the vulnerabilities — Cisco Adaptive Security Appliance SNMP Remote Code Execution Vulnerability — is high.

"The vulnerability is due to a buffer overflow in the affected code area," according to Cisco’s advisory. "An attacker could exploit this vulnerability by sending crafted SNMP packets to the affected system."

Fortinet also issued a security advisory for an exploit it rates as high because it enables remote administrative access.

Recommended Reading

Filed Under: Security

Editors' picks

  • Google's headquarters
    Image attribution tooltip
    Justin Sullivan via Getty Images
    Image attribution tooltip

    Google ties billions in revenue this year to generative AI

    Alphabet CEO Sundar Pichai said underinvesting in the technology is a larger risk than overinvesting, as vendors pour resources into developing chips, models and infrastructure. 

    By Lindsey Wilkinson • July 24, 2024
  • A group of flags on flag poles stand underneath one large blue flag, which features a circle of gold stars in the middle.
    Image attribution tooltip
    Johannes Simon via Getty Images
    Image attribution tooltip

    The EU AI Act is here: What can CIOs expect?

    The act took effect Thursday, but enforcement deadlines are spread out through 2027. The act could have a similar global influence to GDPR.

    By Lindsey Wilkinson • Aug. 1, 2024

Company Announcements

View all | Post a press release
Viz.ai Wins Prestigious Prix Galien USA Award for Best Digital Health Solution
From Viz.ai
November 12, 2024
Cosentino Drives Business Transformation with AI Powered by Celonis Process Intelligence
From Celonis
October 23, 2024
TrustNet Named 2024’s Best Compliance Advisory and Audit Firm at CDM’s Annual Top InfoSec Inno…
From TrustNet
November 06, 2024
Celonis Business Collaboration Networks Drive Process Improvement Across Company Boundaries
From Celonis
October 23, 2024
Editors' picks
  • Google's headquarters
    Image attribution tooltip
    Justin Sullivan via Getty Images
    Image attribution tooltip

    Google ties billions in revenue this year to generative AI

    Alphabet CEO Sundar Pichai said underinvesting in the technology is a larger risk than overinvesting, as vendors pour resources into developing chips, models and infrastructure. 

    By Lindsey Wilkinson • July 24, 2024
  • A group of flags on flag poles stand underneath one large blue flag, which features a circle of gold stars in the middle.
    Image attribution tooltip
    Johannes Simon via Getty Images
    Image attribution tooltip

    The EU AI Act is here: What can CIOs expect?

    The act took effect Thursday, but enforcement deadlines are spread out through 2027. The act could have a similar global influence to GDPR.

    By Lindsey Wilkinson • Aug. 1, 2024
Latest in Security
image/svg+xml
Industry Dive is an Informa business
© 2024 Industry Dive. All rights reserved. | View our other publications | Privacy policy | Terms of use | Take down policy.
Cookie Preferences / Do Not Sell