April 18, 2023


Threat Actors Exploiting SNMP Vulnerabilities in Cisco Routers

Recent reports and threat intelligence indicate that cyber attackers are exploiting vulnerabilities in legacy Cisco routers and switches that have not been properly upgraded, configured, or updated with the latest software.

March 15, 2022


Cyber Actors Bypassing Two-Factor Authentication Implementations

A recent FBI flash bulletin described how cyber actors were able to use the PrintNightmare vulnerability (CVE-2021-34527) and bypass Duo 2FA to compromise an unpatched Windows machine and gain administrative privileges. This did NOT leverage or reveal a vulnerability in Duo.

December 15, 2021


What Is Log4j and Why Security Alerts Matter to DevSecOps Teams

Learn how a Cisco SecureX automation can alert security operations (DevSecOps) teams when a new critical impact security advisory is published from the Cisco Product Security Incident Response Team (PSIRT).

May 8, 2019


Customers Deserve Transparency to Manage Risk

Regardless of how they are found, all vulnerabilities are investigated and publicly reported per our policies.

April 29, 2019


The PSIRT Services Framework: Helping the Industry Protect the Ecosystem

At Cisco, our leadership made the decision over twenty four years ago that we would clearly publicly communicate security vulnerabilities or other issues that could potentially expose customers to risk....

September 26, 2018


September 2018 Cisco IOS and IOS XE Software Bundled Publication

Today, September 26, 2018, we released the second and final Cisco IOS and IOS XE Software Security Advisory Bundled Publication of 2018.

August 10, 2018


Shining a Light on a New Way to Attack WPA2 Weaknesses

Throughout its history, wireless communication has been susceptible to eavesdropping. No matter the WPA standard, there will always be attempts to exploit weaknesses and breach privacy. 

June 22, 2018


Cisco PSIRT Notice About Public Exploitation of the Cisco ASA Web Services Denial of Service Vulnerability

With the security of our customers' networks being a top priority, we're actively raising awareness of a vulnerability affecting Cisco ASA Software and Cisco Firepower Threat Defense (FTD) Software.