April 19, 2023 By Sead Fadilpašić
Jaguar Tooth is on the hunt for outdated Cisco routers
(Image credit: Shutterstock)
Russian state-sponsored threat actors have built custom malware and are using it against old, unpatched Cisco IOS routers(opens in new tab), a joint US-UK report has warned.
The UK National Cyber Security Centre (NCSC), the US Cybersecurity and Infrastructure Security Agency (CISA), the National Security Agency (NSA), and the Federal Bureau of Investigation (FBI) released a report(opens in new tab) in which they state that APT28, a group allegedly affiliated with the Russian General Staff Main Intelligence Directorate (GRU), developed a custom malware named “Jaguar Tooth”.
This malware is capable of stealing sensitive data passing through the router, and allows threat actors unauthenticated backdoor access to the device.