Technology vendor Cisco is pushing out security updates to customers to address a critical vulnerability found in its recently introduced line of FirePower firewall products. The vulnerability, according to Cisco, allows attackers to slip malware onto critical systems without detection. The flaw is also impacts Snort, an open source network-based intrusion detection system also owned by Cisco.
The public exploit—a rooting application—was privately disclosed to Google on March 15 by Zimperium researchers, and a less than a month after CORE Team researchers reported that CVE-2015-1805, which was patched in 2014 in the Linux kernel, also affects Android devices.
Ransomware clearly has people on many fronts worried, so much so that the United States and Canada took an unprecedented step last week to issue a joint advisory on the threat posed by crypto-ransomware.
Considerable controversy surrounds the viability and value of the hybrid cloud. The latest ebook from ZDNet and TechRepublic analyzes the business advantages and potential shortcomings of an integrated cloud strategy.
The update, released on Monday, is available for amd64, i386, ia64, powerpc, powerpc64, sparc64, and armv6 architectures. The stable version follows three release candidates published through March and updates version 10.2 released in August.