Cybersecurity Threat Advisory 0029-22: Threat Actors Targeting VoIP Providers with DDoS Attacks
F5 has released a set of vulnerabilities including 17 high and 1 critical which affect the users of BIG-IP application delivery controller. The vulnerabilities provides malicious actors the ability to deploy crypto mining, ransomware, or other malicious files to the internal network, as well as data theft of company data. Barracuda MSP recommends applying the latest patches to F5’s products that are affected by the vulnerabilities.
Technical Detail & Additional Information
WHAT IS THE THREAT?
WHY IS IT NOTEWORTHY?
WHAT IS THE EXPOSURE OR RISK?
This set of vulnerabilities can be exploited for these widely used enterprise devices to gain initial access to networks and then spread laterally to other devices. This could lead to the deployment of crypto mining, ransomware, or other malicious files to the internal network, as well as theft of confidential or corporate data. Currently, these vulnerabilities are extremely easy to exploit, having the endpoint named “bash”, that some security researchers alluding to the fact this was corporate espionage.
WHAT ARE THE RECOMMENDATIONS?
Barracuda MSP recommends installing the patch released by F5 Immediately.
For more in-depth information about the recommendations, please visit the following links:
If you have any questions, please contact our Security Operations Center.