Educause Security Discussion mailing list archives
Cisco ISO routers
From: Curt Kappenman <ckappenman () ANDERSONUNIVERSITY EDU>
Date: Thu, 13 May 2021 19:41:27 +0000
Posting an FYI for those who are using Cisco ISO routers. One of our security resources has just notified us that they are seeing attacks against these devices where the malicious actor is forcing TFTP clients to download a malicious .conf file that forces the device to wipe it's config and download a config from a malicious source. Not a lot of other details at this time but wanted to make folks aware. Curt Kappenman Security Compliance Officer [cid:image001.png@01D7480E.6F037AC0]<http://www.andersonuniversity.edu/it.aspx> 316 Boulevard, Anderson, SC 29621 Help Desk: (864) 231-2457 ckappenman () andersonuniversity edu<mailto:ckappenman () andersonuniversity edu> www.andersonuniversity.edu<http://www.andersonuniversity.edu/> Note: This message contains information which may be confidential and privileged. Unless you are the addressee (or authorized to receive for the addressee), you may not use, copy or disclose to anyone this message or any information contained in this message. If you have received this message in error, please advise the sender by replying to ckappenman () andersonuniversity edu<mailto:ckappenman () andersonuniversity edu>, and delete the message. Thank you for your cooperation in this matter. [Facebook]<https://www.facebook.com/pages/AU-Information-Technology/248016151900704>[Twitter]<https://twitter.com/#!/AUTechnology> ********** Replies to EDUCAUSE Community Group emails are sent to the entire community list. If you want to reply only to the person who sent the message, copy and paste their email address and forward the email reply. Additional participation and subscription information can be found at https://www.educause.edu/community
Current thread:
- Cisco ISO routers Curt Kappenman (May 13)