banner Expire 1 July 2024
Ad Ends 13 July 2024
banner Expire 15 July 2024
banner Expire 18 October 2024
ad End 18 October 2024
Ad Ends 13 July 2023
banner Expire 20 May 2024
What's new
Ad expire at 5 May 2024
UniCvv
CrdCrew.cc Carding forum
Western union transfer
Carding.pw carding forum
adv exp at 23 may

Cybercriminals try to steal administrator passwords from F5 BIG-IP devices

Daniel

TRUSTED VERIFIED SELLER
Staff member
Joined
Jun 13, 2020
Messages
6,540
Reaction score
891
Points
212
Awards
2
  • trusted user
  • Rich User
Attackers began to exploit the vulnerability in F5 BIG-IP three days after its disclosure.




NCC Group security researcher Rich Warren has documented a series of cyber attacks on F5 BIG-IP network devices. According to the expert, attackers exploit a vulnerability in the configuration interface of the popular BIG-IP application delivery controller in order to steal administrator passwords from hacked devices.

These devices are one of the most popular network products and are used to support some major global networks. BIG-IP devices are used in government networks, in the networks of Internet service providers, in cloud computing data centers and are widely used in corporate networks.

Earlier, Positive Technologies specialist Mikhail Klyuchnikov identified a critical vulnerability (CVE-2020-5902) of remote code execution in BIG-IP devices. Exploiting the vulnerability allows executing commands on behalf of an unauthorized user and completely compromising the system, for example, intercepting the traffic of web resources controlled by the controller. The problem received a maximum score of 10 on the CVSSv3 scale.

Two days after F5 Networks released a fix for this problem, security researchers began to actively publish PoC codes to exploit the vulnerability.

According to Warren, who used BIG-IP handles (servers that simulate BIG-IP devices), he recorded malicious attacks from five different IP addresses.
 
Ad End 1 July 2024
Top