4hw.com.cn: foreign media said on April 9 that the information service of Kaspersky laboratory issued a notice on April 7 saying that unidentified hackers attacked the switches produced by Cisco in the United States, resulting in a large area of Internet failure.
According to the Interfax news agency on April 7, the announcement said: 'our sources disclosed that Cisco's catalyst series switches are now under large-scale attack and are used in data centers almost everywhere. '
According to Kaspersky, unknown hackers have gained the ability to execute arbitrary code on network devices by exploiting the vulnerability of Cisco's smart installer. The company said: 'criminals changed the image of Cisco's Internet operating system, rewritten the configuration file, and wrote & lsquo; don't disturb our election & rsquo. '
According to the report, the attack paralyzed the data center as a whole and many famous websites could not be opened, including the Russian media websites such as fontanka, the Communist Youth League truth and so on. Twitter users also said there was a massive breakdown of the social network.
Kaspersky Lab said: 'data from the tulos security intelligence research group of Cisco's global threat intelligence team shows that the vulnerability exists in more than 168000 devices around the world. '
Kaspersky's lab stressed: 'it's not entirely clear what the scope of the attack is, but it could be very serious. There are various indications that the main target of the criminals is the Russian domain, although other countries are obviously not immune. '
According to Reuters on April 7, Iran's Ministry of information and Communications said on April 7 that hackers attacked networks in various countries, including Iran's data centers, and left on the screen a picture of the American flag and a warning saying, "don't disturb our election.".
In a statement issued by the official Iranian news agency, the Ministry of information and Communications said: 'this attack is obviously a large-scale attack, affecting 200000 routing switches around the world, including 3500 in China. '
The statement said the attack on Internet service providers and resulting in Internet users disconnected was caused by a flaw in Cisco's router. Although Cisco had previously issued warnings and provided patches, some companies did not install patches due to the Iranian New Year holiday.
Nick biacini, a researcher of the security intelligence research group at tulos, a Cisco company, said in a blog on May 5: "several incidents in multiple countries, including those specific to key infrastructure, are related to misuse of intelligent installation Protocol & hellip; & hellip; therefore, we are taking a positive position and once again emphasizing the increased risks and effective remedies to users Law. '