• Velvet Ant's silent invasion.

  • Nov 2 2024
  • Length: 22 mins
  • Podcast

Velvet Ant's silent invasion.

  • Summary

  • This week, we are joined by, Amnon Kushnir from Sygnia, who is sharing their work on "China-Nexus Threat Group ‘Velvet Ant’ Leverages a Zero-Day to Deploy Malware on Cisco Nexus Switches." In early 2024, Sygnia observed the ‘Velvet Ant’ threat group exploiting a zero-day vulnerability (CVE-2024-20399) to infiltrate Cisco Switch appliances and operate undetected within enterprise networks. This attack enables threat actors to escape Cisco’s command interface and install malware directly on the device’s OS, bypassing standard security tools. The incident underscores the risks posed by third-party appliances and the importance of enhanced monitoring and threat detection to counter advanced persistent threats. The research can be found here: China-Nexus Threat Group ‘Velvet Ant’ Leverages a Zero-Day to Deploy Malware on Cisco Nexus Switches Learn more about your ad choices. Visit megaphone.fm/adchoices
    Show More Show Less
activate_Holiday_promo_in_buybox_DT_T2

What listeners say about Velvet Ant's silent invasion.

Average customer ratings

Reviews - Please select the tabs below to change the source of reviews.