Zscaler clarifies rumors confirms "No Impact"  A threat actor claimed to have stolen data from a significant cybersecurity company, but Zscaler responded with a statement on Wednesday stating that it “can confirm there is no impact or compromise” to its customer or corporate systems. The cybersecurity provider stated that the only thing discovered during its inquiry was that a "isolated test environment" had been exposed to the internet; this environment did not contain any client data. A screengrab released on X shows that the threat actor, IntelBroker, stated in a forum post tha ..read more

Cisco SDWAN C8000v Azure Router Troubleshooting  Today we are going to talk about an issue related to the Cisco SDWAN C8000v router where we were adding a new interface on the Azure router with a different color.  Fig 1.1- Cisco SDWAN C8000v Azure Router Troubleshooting  We are mapping a prefix to the unused interface Gig1 of C8000V installed on Azure, while doing it actually removed the previous unassigned interface on the router and a new interface gets created on the router.  Earlier on the Azure router as shown below, you will see the interface GigabitEth ..read more

Introduction to FortiGate SDWAN Zones  Businesses need a comprehensive SD-WAN solution like Fortinet Secure SD-WAN to meet these business requirements, the only one that is both secure and flexible for deployment across any size organization. Rather than separately controlling WAN routers, WAN optimization, and security devices like firewalls and secure web gateways (SWGs), FortiGate Secure SD-WAN integrates these into a single FortiGate NGFW. By advancing efficiency without compromising security, FortiGate provides next-generation security and networking capabilities. With Fortinet SDWAN ..read more

Features in Cisco Catalyst SDWAN release 20.14.x Lets start with the Cisco Catalyst SD-WAN (Earlier known as Cisco Viptela SD-WAN)first and then we will discuss on the new feature sets in Cisco Catalyst SD-WAN release 20.14.x Fig 1.1- Cisco Catalyst SD-WAN 20.14.x ⭐ Cisco Catalyst SDWAN (Cisco Viptela SDWAN) ? SD-WAN so called Software Defined WAN solution, where control plane or management plane is separated from the physical devices, while in the Viptela solution we have following architecture, where we have data-plane on the physical devices (obvi ..read more

Cisco SDWAN : Layer 3 TLOC Extension A feature called TLOC extension enables a WAN Edge router to communicate with the neighboring WAN Edge router via a TLOC-extension interface through the WAN transport. Without requiring to be directly attached to both service provider clouds, the TLOC-extension capability enables the WAN transports to be extended to both SD-WAN routers. The capability offers transparent connectivity from one interface (referred to as a TLOC extension interface) to a certain WAN transport and is configured per-interface.  There are two ways we can configure the TLOC ext ..read more

Cisco SD-WAN : CAT8300 with Bug CSCwb20082 Fig 1.1- Cisco SD-WAN : CAT8300 with Bug CSCwb20082 When you see you are hit with the Bug "CSCwb20082" which means its Flash disk full on your local router and you may encountered this problem where Hundreds of thousands of sdavc packs that never seem to be cleared out are filling up the router bootflash.   Due to a shortage of storage space, this has so far resulted in one of our routers failing; the device was non-functional and the cEdge services would not start.  Because of these sdavc packs, we are observing ..read more

Private Keys Exposed : Critical PuTTY Vulnerability: CVE-2024-31497 An attacker can quickly retrieve a user's NIST P-521 secret key in about 60 signatures via biased ECDSA nonce creation in PuTTY 0.68 through 0.80 before 0.81. This is crucial in the event that a hostile party is able to read communications that are signed with Pageant or PuTTY.  Given that Pageant used an agent-forwarding mechanism to sign the requisite set of signed messages and that they are kept in a public Git server that allows SSH commit signing, it's possible that the messages can be viewed by the general pu ..read more

Cisco ASA Device May Be Compromised by Hackers  About the new Vulnerability Cisco CVE-2024-20353 Cisco CVE-2024-20359 As you may heard about the two new actively exploited Cisco vulnerabilities impacting Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software. "On a breached ASA, attackers send shellcode to the host-scan-reply field, which is subsequently processed by the Line Dancer implant. The host-scan-reply parameter, which is often used later in the SSL VPN connection setup process, is handled by ASA devices configured for SSL VPN, IPs ..read more

Cisco SDWAN troubleshooting Scenario: Port-hop Today we are going to talk about one of the troubleshooting scenario where we were facing the continuously rebooting of Cisco SDWAN control connections after every 5 mins. The platform is Cisco SDWAN C8000v virtual router Fig 1.1- Cisco SDWAN troubleshooting Scenario : Port-hop Router : Cisco SDWAN Router C8000v in Azure Platform Version : 17.9.04a ⭐Related : HSECK9 License for Cisco C8000v SDWAN Router ⭐Related : Resizing Cisco Virtual Router C8000v VM in Azure ⭐Related : Cisco SDWAN Workflow : Managing HS ..read more

Cisco Hypershield: AI driven Security  Cisco Hypershield is a game-changing security tool that protects modern apps and dynamic compute environments on-premises and in the cloud. It has a revolutionary distributed design that merges network and workload enforcement points under a unified management system. It offers robust and scalable protection that extends the security perimeter from traditional infrastructures to the cloud. Cisco's senior security officials describe it as the "most consequential" security announcement in the company's four decades of operation. That's because the to ..read more