Hackers exploit Cisco SNMP flaw to deploy rootkit on switches

Threat actors exploited a recently patched remote code execution vulnerability (CVE-2025-20352) in Cisco networking devices ...
SDxCentral

Cisco sees another security threat with switches kit exploit

According to the researchers, the affected devices at risk from the exploit are Cisco Catalyst 9300 and 9400 Series Switches, and the legacy 3750G series, with both 32-bit and 64-bit switch builds ...
The Hacker News

Hackers Deploy Linux Rootkits via Cisco SNMP Flaw in 'Zero Disco' Attacks

Cybersecurity researchers have disclosed details of a new campaign that exploited a recently disclosed security flaw impacting Cisco IOS Software and IOS XE Software to deploy Linux rootkits on older, ...
CSO Online

‘Zero Disco’ campaign hits legacy Cisco switches with fileless rootkit payloads

Researchers warn of fileless payloads, memory hooks, and a UDP-based C2 controller that complicate detection and remediation.
SecurityWeek

Cisco Routers Hacked for Rootkit Deployment

Threat actors are exploiting CVE-2025-20352, a recent Cisco zero-day, to deploy a rootkit on older networking devices. Older Cisco devices unpatched against a recent zero-day vulnerability have been ...
Infosecurity Magazine

New Rootkit Campaign Exploits Cisco SNMP Flaw to Gain Persistence

Currently, there is no universal automated test to confirm compromise by this operation. If compromise is suspected, device ...
Techzine Europe

Hackers exploit Cisco vulnerability to install rootkit on switches

A new attack campaign, dubbed Operation Zero Disco by Trend Micro , exploits a vulnerability in Cisco's Simple Network ...