Menu

  • Alerts
  • Incidents
  • News
  • Cyber Briefing
  • Cyber Decoded
  • Cyber Hygiene
  • Cyber Review
  • Cyber Tips
  • Definitions
  • Malware
  • Tutorials

Useful Tools

  • Password Generator
No Result
View All Result
Sunday, December 3, 2023
CyberMaterial
  • Education
    • Cyber Decoded
    • Definitions
  • Information
    • Alerts
    • Incidents
    • News
    • Cyber Briefing
  • Insights
    • Cyber Hygiene
    • Cyber Review
    • Tips
    • Tutorials
  • Support
    • Contact Us
Get Help
CyberMaterial
  • Education
    • Cyber Decoded
    • Definitions
  • Information
    • Alerts
    • Incidents
    • News
    • Cyber Briefing
  • Insights
    • Cyber Hygiene
    • Cyber Review
    • Tips
    • Tutorials
  • Support
    • Contact Us
Get Help
No Result
View All Result
CyberMaterial
No Result
View All Result
Home

Critical Cyber Threat in Norway

Reading Time: 4 mins read
in Incidents

The head of Norway’s National Security Authority (NSM), Sofie Nystrøm, issued a grave warning as the country grappled with a significant cybersecurity threat. Hackers successfully exploited two recently disclosed vulnerabilities in Cisco systems, compromising what Nystrøm described as “important businesses” in the nation.

While Nystrøm did not reveal the identities of the affected companies, she emphasized the severity of the situation and the need for a coordinated national response to address the zero-day vulnerabilities impacting Cisco IOS XE.

The attack was characterized as “very serious,” surpassing a previous incident that targeted DSS, Norway’s government support agency, resulting in hackers gaining access to sensitive data from several government ministries. Cisco had recently published security advisories, indicating that attackers were actively exploiting vulnerabilities (CVE-2023-20198 and CVE-2023-20273) with the former receiving a maximum Common Vulnerability Scoring System (CVSS) score of 10/10. Cisco provided an initial patch to address the issue, but by that time, numerous systems had already been compromised, with security experts uncovering potentially up to 40,000 compromised devices online.

The attackers adapted their tactics to evade detection, prompting a decline in the count of externally observable compromised systems. Despite the implant’s inability to persist after a device reboot, they created new local user accounts with administrator privileges, further underscoring the malicious intent behind the attack.

Deputy Director Gullik Gundersen noted the long-standing awareness of the vulnerability and its critical rating, emphasizing that attackers could gain complete control over the compromised systems. In response, businesses using Cisco IOS XE were urged to update their systems promptly, as NSM continued its efforts to identify and address affected entities amid the ongoing incident.

References:

  • Multiple Vulnerabilities in Cisco IOS XE Software Web UI Feature
  • NSM-sjefen bekrefter: Håndterer nytt avansert cyberangrep mot Norge
Tags: 2023AttackersCiscoCyber incidentCyber Incidents 2023CyberattackCybersecurityGovernmentHackersNorwayVulnerabilities
ADVERTISEMENT

Related Posts

December 01, 2023 – Cyber Briefing

December 01, 2023 – Cyber Briefing

December 1, 2023
US Sanctions North Korean Hackers

US Sanctions North Korean Hackers

December 1, 2023
Meta Counters Foreign Influence

Meta Counters Foreign Influence

December 1, 2023
Lazarus Group’s $3B Crypto Gains

Lazarus Group’s $3B Crypto Gains

December 1, 2023
UK SMBs Struggle Spotting Scams

UK SMBs Struggle Spotting Scams

December 1, 2023
Honey Birdette Faces Data Breach

Honey Birdette Faces Data Breach

December 1, 2023

Latest Alerts

Zyxel Alerts Critical Flaws in NAS

Apple Tackles iOS Zero-Days

Hackers Deploy LUMMA via Invoice

UEFI Bugs Enable Bootkit Attacks

Fake Virus Alerts Hit Major Sites

FjordPhantom Targets Banks

Subscribe to our newsletter

    Latest Incidents

    Honey Birdette Faces Data Breach

    NC City Hit by Thanksgiving Hack

    Science History Institute Faces Ransomware

    Staples Faces Cyberattack

    Berglund’s Data Breach Hits 50K Individuals

    Cyber Attack Hits Capital

    • About Us
    • Contact Us
    • Legal and Privacy Policy
    • Site Map

    © 2023 | CyberMaterial | All rights reserved

    No Result
    View All Result
    • Alerts
    • Incidents
    • News
    • Cyber Briefing
    • Cyber Decoded
    • Cyber Hygiene
    • Cyber Review
    • Definitions
    • Malware
    • Cyber Tips
    • Tutorials

    Copyright © 2023 CyberMaterial

    Welcome Back!

    Login to your account below

    Forgotten Password?

    Retrieve your password

    Please enter your username or email address to reset your password.

    Log In

    Add New Playlist