Security News > 2020 > August > Oh cool, more Cisco patches to apply. Happy Monday

Cisco customers once again find themselves needing to patch critical vulnerabilities in Switchzilla's gear.

The equipment maker has emitted fixes or updates for multiple CVE-listed vulnerabilities in the Treck IP stack, Data Center Network Manager, and SD-WAN. Those patches should be applied ASAP. A high-rated path traversal vulnerability was patched in the Adaptive Security Appliance and Firepower Threat Defense software.

Analyst house Recorded Future said [PDF] Chinese state-sponsored hacking crews took aim at the Catholic church to gain intel ahead of talks between the Vatican and the Chinese Communist Party set to take place this September.

The researchers attributed the attacks to RedDelta, a hacking group assumed to be working on behalf of the Chinese government, armed with hacking and monitoring software that is shared between a number of other state-sponsored hacking operations.

"Due to RedDelta's targeting of organizations that heavily align to Chinese strategic interests, use of shared tooling traditionally used by China-based groups, and overlaps with a suspected Chinese state-sponsored threat activity group, Insikt Group believes that the group likely operates on behalf of the People's Republic of China government," says Recorded Future.

News URL

https://go.theregister.com/feed/www.theregister.com/2020/08/03/roundup_security_july_31/