Researchers have detailed a campaign that takes advantage of a recently identified vulnerability in Cisco IOS and IOS XE software. This flaw allows threat actors to deploy Linux rootkits on older systems that lack proper protections. The campaign, codenamed Operation Zero Disco by Trend Micro, leverages the stack overflow vulnerability designated as CVE-2025-20352, which carries a CVSS score of 7.7.
The exploitation of this vulnerability emphasizes the importance of timely security updates and the risks associated with using outdated software. Organizations must remain vigilant in their cybersecurity practices, especially concerning legacy systems that may not have adequate defenses against such sophisticated attacks. As the threat landscape evolves, the ability to swiftly respond to vulnerabilities is critical for protecting sensitive data and maintaining operational integrity.
👉 Pročitaj original: The Hacker News
