Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
hiveproHive ProHIVEPRO:96B0451D7E8949B302CF0B8A519CB0FB
HistoryFeb 20, 2024 - 11:19 a.m.

Akira Ransomware Exploits Cisco Flaw for Maximum Impact

2024-02-2011:19:52
Hive Pro
www.hivepro.com
13
akira ransomware
cisco anyconnect
ssl vpn
cve-2020-3259
vulnerability
patches
threat
hiveforce labs
linkedin

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

7.2 High

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

0.019 Low

EPSS

Percentile

88.3%

JSON

Summary: The Akira ransomware has been identified for utilizing the Cisco AnyConnect SSL VPN as its initial access vector, specifically exploiting the CVE-2020-3259 vulnerability. Despite Cisco addressing this vulnerability with patches released in May 2020, the threat remains prevalent. Threat Level - Red | Attack Report For a detailed threat advisory, download the pdf file here To receive real-time threat advisories, please follow HiveForce Labs on LinkedIn.

Related

cisa_kev 1
attackerkb 1
ptsecurity 1
nessus 1
cve 1
cisco 1
prion 1
ics 1
thn 2
threatpost 1
avleonov 1
cisa_kev
cisa_kev
Cisco ASA and FTD Information Disclosure Vulnerability
2024-02-15 00:00:00
attackerkb
attackerkb
CVE-2020-3259
2020-05-06 00:00:00
ptsecurity
ptsecurity
PT-2020-03: Information disclosure in Сisco ASA and Cisco FTD
2020-02-21 00:00:00
nessus
nessus
Cisco Adaptive Security Appliance Software Web Services Information Disclosure (cisco-sa-asaftd-info-disclose-9eJtycMB)
2020-06-19 00:00:00
cve
cve
CVE-2020-3259
2020-05-06 17:15:00
cisco
cisco
Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software Web Services Information Disclosure Vulnerability
2020-05-06 16:00:00
prion
prion
Design/Logic Flaw
2020-05-06 17:15:00
ics
ics
#StopRansomware: Akira Ransomware
2024-04-18 12:00:00
thn
thn
Akira Ransomware Gang Extorts $42 Million; Now Targets Linux Servers
2024-04-19 11:01:00
CISA Warning: Akira Ransomware Exploiting Cisco ASA/FTD Vulnerability
2024-02-16 15:42:00
threatpost
threatpost
Cisco Fixes High-Severity Flaws In Firepower Security Software, ASA
2020-05-07 18:43:04
avleonov
avleonov
February 2024: Vulremi, Vuldetta, PT VM Course relaunch, PT TrendVulns digests, Ivanti, Fortinet, MSPT, Linux PW
2024-03-05 18:43:32

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

7.2 High

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

0.019 Low

EPSS

Percentile

88.3%

JSON
Related for HIVEPRO:96B0451D7E8949B302CF0B8A519CB0FB
cisa_kev1attackerkb1ptsecurity1nessus1cve1cisco1prion1ics1thn2threatpost1avleonov1