{"id":659,"date":"2022-04-21T12:10:11","date_gmt":"2022-04-21T16:10:11","guid":{"rendered":"https:\/\/community.mis.temple.edu\/mis5203sec001spring2020\/?p=659"},"modified":"2022-04-21T12:10:11","modified_gmt":"2022-04-21T16:10:11","slug":"cisco-umbrella-default-ssh-key-allows-theft-of-admin-credentials","status":"publish","type":"post","link":"https:\/\/community.mis.temple.edu\/mis5203sec001spring2020\/2022\/04\/21\/cisco-umbrella-default-ssh-key-allows-theft-of-admin-credentials\/","title":{"rendered":"Cisco Umbrella default SSH key allows theft of admin credentials"},"content":{"rendered":"<p><a href=\"https:\/\/www.bleepingcomputer.com\/news\/security\/cisco-umbrella-default-ssh-key-allows-theft-of-admin-credentials\/\">Cisco Umbrella default SSH key allows theft of admin credentials (bleepingcomputer.com)<\/a><br \/>\n&#8220;Cisco has released security updates to address a high severity vulnerability in the Cisco Umbrella Virtual Appliance (VA), allowing unauthenticated attackers to steal admin credentials remotely.&#8221; The vulnerability was due to a static SSH host key being present, which allowed for a man-in-the-middle attack that learns administrator credentials, changes configurations, or reloads the VA. There is no impact on default configurations as the SSH service is disabled by default.<\/p>\n<p>Kenneth Saltisky<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Cisco Umbrella default SSH key allows theft of admin credentials (bleepingcomputer.com) &#8220;Cisco has released security updates to address a high severity vulnerability in the Cisco Umbrella Virtual Appliance (VA), allowing unauthenticated attackers to steal admin credentials remotely.&#8221; The vulnerability was due to a static SSH host key being present, which allowed for a man-in-the-middle attack [&hellip;]<\/p>\n","protected":false},"author":27928,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_genesis_hide_title":false,"_genesis_hide_breadcrumbs":false,"_genesis_hide_singular_image":false,"_genesis_hide_footer_widgets":false,"_genesis_custom_body_class":"","_genesis_custom_post_class":"","_genesis_layout":"","footnotes":""},"categories":[663943],"tags":[],"class_list":["post-659","post","type-post","status-publish","format-standard","category-instructor","entry"],"jetpack_featured_media_url":"","_links":{"self":[{"href":"https:\/\/community.mis.temple.edu\/mis5203sec001spring2020\/wp-json\/wp\/v2\/posts\/659","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/community.mis.temple.edu\/mis5203sec001spring2020\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/community.mis.temple.edu\/mis5203sec001spring2020\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/community.mis.temple.edu\/mis5203sec001spring2020\/wp-json\/wp\/v2\/users\/27928"}],"replies":[{"embeddable":true,"href":"https:\/\/community.mis.temple.edu\/mis5203sec001spring2020\/wp-json\/wp\/v2\/comments?post=659"}],"version-history":[{"count":1,"href":"https:\/\/community.mis.temple.edu\/mis5203sec001spring2020\/wp-json\/wp\/v2\/posts\/659\/revisions"}],"predecessor-version":[{"id":660,"href":"https:\/\/community.mis.temple.edu\/mis5203sec001spring2020\/wp-json\/wp\/v2\/posts\/659\/revisions\/660"}],"wp:attachment":[{"href":"https:\/\/community.mis.temple.edu\/mis5203sec001spring2020\/wp-json\/wp\/v2\/media?parent=659"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/community.mis.temple.edu\/mis5203sec001spring2020\/wp-json\/wp\/v2\/categories?post=659"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/community.mis.temple.edu\/mis5203sec001spring2020\/wp-json\/wp\/v2\/tags?post=659"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}