Category: Cisco Security

January 30, 2020
Cisco Firepower Management Center is on fire!

The vulnerability is due to bad handling of LDAP responses when the latter is being used for External Authentication. The bad actor can run the exploit by creating a crafted HTTP requests effectively bypassing authentication and getting administrative privileged access to the Web GUI.

Read More
May 24, 2019
Microsoft RDP easy way into an organization – A two-edged sword

Microsoft RDP protocol is one of the main focuses of bad actors in these days. There are reports for numerous successful breaches in small and medium sized organizations with heavy use of RDP from outside.

Read More
November 7, 2018
Cisco SIP inspection based DoS attack

The vulnerability is based on the SIP inspection code that handles SIP signaling packets.

Read More
April 9, 2018
Yet another critical vulnerability found for Cisco devices

On the 29th of March a company that deals with security in embedded devices, called Embedi published their discovery about a critical vulnerability in most Cisco Switch devices (both running IOS and XE).

Read More
March 2, 2018
Memcached - Newest amplification attack out there

In the last months and years we have seen multiple DDoS attacks based on amplification techniques (DNS, NTP, Chargen, SSDP)

Read More
September 8, 2017
Equifax cyber-security breach – lessons to be learned

As you probably know the Equifax (one of the three big credit bureaus in North America and UK) announced it was breached (discovered unauthorized access) on the 29th of July. So far, the predictions are that this leak of sensitive personal data impacts over 143 Million American, Canadian and British citizens.

Read More
June 20, 2017
Cisco Umbrella – light, easy to deploy and powerful

Cisco currently has multiple endpoint security solutions in place – CWS (Cloud Web Security / Scansafe), Umbrella (OpenDNS) and AMP for endpoints are prime examples. AMP is a different breed of endpoint protection, it relies heavily on detection based on heuristics and cloud sandboxing, where as CWS and OpenDNS both concentrate very strongly on making sure your Internet browsing is secure and save.

Read More
May 3, 2017
VTI VPNs introduced to Cisco ASA 9.7.x

Virtual Private Networks constitute a hot topic in networking because they provide low cost and secure communications between sites (site-to-site VPNs) whilst improving productivity by extending corporate networks to remote users (remote access VPNs). Naturally the VPN technology is widely deployed on all internet edge devices and most ASAs.

Read More
March 16, 2017
What is Cisco Unified Threat Defense (FTD)?

Cisco has finally decided to merge its two major network security products – the ASA and FirePOWER. These two have been living on the same hardware (5500X) model for years now but they required separate management which increased the deployment and operational costs for a Cisco FirePOWER implementation.

Read More
March 1, 2017
Bad News VPN Users - SHA-1 is Dead!

SHA-1 is dead, from a security point of view, but has been a long time coming. A combined research collaboration between CWI and Google, published a paper on 23th of February 2017 that proved deliberate collisions can be created for SHA-1 (Secure Hash Algorithm -1).

Read More
December 19, 2016
The Importance of Retrospective Network Security

We are experiencing a new phase in our vision of network security. There is currently no quick fix solution, no 100% proof network security protection/prevention tool or product.

Read More
November 30, 2016
8 Steps to Secure Your Organization against Cyber-Attacks

There is not a single industry anywhere in the world who are immune from the threat of some form of cyber-attack.

Read More
© 4CornerNetworks - Website by Roslin Design
4CornerNetworks is the trading name of 4CornerNetworks Ltd
Reegistered Address: 4 Harecroft Lane, Ickenham, Uxbridge, Middlesex, UB10 8FD
Company Registration Number: 07920761
Registered in England
chevron-down