APT28 Uses Vulnerability in Cisco Routers to Deploy Malware

20 April 2023
Government agencies in the U.S. and the U.K. issued a joint advisory to warn organizations about attacks exploiting an old vulnerability in Cisco routers. The attacks are attributed to the Fancy Bear threat group and the flaw in question is CVE-2017-6742. The attackers are exploiting the vulnerability to deploy a custom malware, named Jaguar Tooth.