Cisco SD-WAN make-me-root bug under attack

Cisco SD-WAN devices are under active attack due to a critical vulnerability that allows attackers to gain root access. The flaw, tracked as CVE-2023-20214, has been exploited in the wild, prompting urgent patching from Cisco.

MOST POPULAR EVENTS - Thriving Through Volatility: The Everpure Advantage in an Uncertain Market Learn how a consumption-based operating model provides flexibility, improves efficiency, and brings predictability to infrastructure investments. - From Prompt to Exploit: How LLMs Are Changing API Attacks Modern applications are API-driven, interconnected, and often over-permissioned, making them an ideal target for AI-assisted attacks. - Architecting the Future: Unlocking Enterprise Data Services for Kubernetes Join us to discover how to eliminate infrastructure silos and establish a standardized, enterprise-grade cloud-native platform. - Catch the Advanced Attacks Microsoft 365 Misses with Behavioral AI Security Microsoft 365 is the backbone of enterprise communication, and its native security filters out the known and the noisy. - Accelerate your innovation This is your technical deep-dive into the practical tools and techniques that define the next generation of resilient Dev and IT operations. - Virtual Cyber Recovery Sim Step into the chaos of a live ransomware breach, test your response skills, and team up with other IT and security pros to outsmart cybercriminals - Virtual Cyber Recovery Simulation Ransomware attacks aren’t slowing down, and neither are we. Druva’s hit event, Escape Ransomware, is now fully virtual. - Zero Trust for the Agentic AI Era The identity and access models most organizations rely on were built for human users, not non-human identities operating independently. - Zero Trust for the Agentic AI Era The identity and access models most organizations rely on were built for human users, not non-human identities operating independently. - Agentic AI at Scale: From Pilot to Production Join us to learn how to unlock real ROI by driving adoption of AI at scale. AI https://beta.theregister.com/tag/ai - AI + ML A modest proposal: Reformat everything to make documents more palatable to AI What's up, DocLang? - security Feds freaked over Fable 5 after simple 'fix this code' prompt, not jailbreak, says researcher According to the one person who actually read the research paper - AI AND ML Anthropic reserves right to check ID for Claude subs How can I help you today? Present your papers to begin - ai and ml Salesforce reels in customer support AI specialist Fin for $3.6B Support bot maker claims its AI agents can resolve three-quarters of customer queries without human help - AI AND ML US clampdown on Anthropic models sends EU sovereignty surge into overdrive Brussels says access curbs prove Europe needs greater technological independence Infosec https://beta.theregister.com/security - Security Russians are posing as Signal support to launch phishing attacks PLUS: US takes down Iranian propaganda sites; Marketing company asks 'Why Do We Have Your Information?' And more - Security Microsoft patches failed to fix on-prem SharePoint, which is now under zero-day attack PLUS: China upgrades smartphone surveillance tools; Ring eases anti-snooping stance; and more - Black Hat and DEF CON DEF CON Franklin project enlists hackers to harden critical infrastructure Voting village reports have been so successful, says Jeff Moss, that the whole of DEF CON will now be included - Security EQT buys majority share in Swiss cybersecurity biz Acronis Went at equivalent of $3.5B+ valuation for entire firm, though portion sold not specified - Malware Month Ten years since the first corp ransomware, Mikko Hyppönen sees no end in sight On the plus side, infosec's a good bet for a long, stable career FOSS https://beta.theregister.com/tag/FOSS - History of CentOS: How a biochemist's Linux hobby project became the enterprise world's default operating system When a community came together after Red Hat said Windows was 'probably the right product' - Netflix wiz creates app to slash AI bills, then open sources it Project Headroom could save you big money, too - OpenBSD 7.9 arrives, a diamond in the rough proud of every sharp edge Sixtieth release adds more cores, delayed hibernation, and basic Wi-Fi 6 without losing its ascetic streak - Fedora: Microsoft is all aboard, but Deepin is dumped Red Hat’s free distro loses a desktop, but makes an important new friend - LocalSend puts your sneakernet out of business Like AirDrop, minus the Apple lock-in - dBase debased: Database titan fades to black after 47 years Blog post mourning decline appears to have helped knock what was left of the veteran app's online presence offline