Hackers Attack Cisco Switches in Russia and Iran

Hackers attacked Cisco switches at data centers in Russia and Iran, leaving an image of the U.S. flag and the message “don’t mess with our elections,” according to ZDNet.

The attacks exploited a ‘Smart Install’ protocol misuse issue that Cisco had previously issued an alert about. The company said it had seen a spike in scans for vulnerable Smart Client switches, and it said nation-state hackers were exploiting it to target critical infrastructure providers. Cisco also pointed to a recent advisory from US-CERT concerning attacks on critical infrastructure from Russian hacking group DragonFly.

According to Reuters, 3,500 switches in Iran were affected by the attack, and Iran’s ICT Minister MJ Azari Jahromi said in a tweet that over 95 percent had been restored by Saturday.

Read more at ZDNet

Homeland Security Today

The Government Technology & Services Coalition's Homeland Security Today (HSToday) is the premier news and information resource for the homeland security community, dedicated to elevating the discussions and insights that can support a safe and secure nation. A non-profit magazine and media platform, HSToday provides readers with the whole story, placing facts and comments in context to inform debate and drive realistic solutions to some of the nation’s most vexing security challenges.

See Full Bio