CSO Online

‘Zero Disco’ campaign hits legacy Cisco switches with fileless rootkit payloads

Researchers warn of fileless payloads, memory hooks, and a UDP-based C2 controller that complicate detection and remediation.

Hackers exploit Cisco SNMP flaw to deploy rootkit on switches

Threat actors exploited a recently patched remote code execution vulnerability (CVE-2025-20352) in Cisco networking devices ...
SecurityWeek

Cisco Routers Hacked for Rootkit Deployment

Older Cisco devices unpatched against a recent zero-day vulnerability have been infected with a rootkit in a new campaign.