Hackers exploit Cisco SNMP flaw to deploy rootkit on switches

Threat actors exploited a recently patched remote code execution vulnerability (CVE-2025-20352) in Cisco networking devices ...
SecurityWeek

Cisco Routers Hacked for Rootkit Deployment

Older Cisco devices unpatched against a recent zero-day vulnerability have been infected with a rootkit in a new campaign.
Infosecurity Magazine

New Rootkit Campaign Exploits Cisco SNMP Flaw to Gain Persistence

Currently, there is no universal automated test to confirm compromise by this operation. If compromise is suspected, device ...
The Hacker News

Hackers Deploy Linux Rootkits via Cisco SNMP Flaw in 'Zero Disco' Attacks

Cybersecurity researchers have disclosed details of a new campaign that exploited a recently disclosed security flaw impacting Cisco IOS Software and IOS XE Software to deploy Linux rootkits on older, ...
SDxCentral

Cisco sees another security threat with switches kit exploit

According to the researchers, the affected devices at risk from the exploit are Cisco Catalyst 9300 and 9400 Series Switches, and the legacy 3750G series, with both 32-bit and 64-bit switch builds ...
CSO Online

‘Zero Disco’ campaign hits legacy Cisco switches with fileless rootkit payloads

Researchers warn of fileless payloads, memory hooks, and a UDP-based C2 controller that complicate detection and remediation.
Ars Technica

PRTG, Cisco Netflow/SNMP, and monitoring

SNMP V1/2 is as easy as telling the device your desired community string and whether you want it to be read only (recommended for your use) or read-write (for configuring the device via SNMP, this can ...
Ars Technica

restart Cisco SNMP?

We had an issue with our AC cutting out last weekend, and a lot of equipment did a thermal protection shutdown. A few of my Cisco switches, when they came back up, apparently are not sending SNMP data ...