Tag Archives: Cisco

A Data Breach Can Cost a Small Business $2.5 Million

SMBs are attractive targets to cybercriminals because they typically have smaller cybersecurity budgets and may lack an internal security team dedicated to timely discovering and responding to cyberattacks. Critically, these organizations may also lack resources to train their employees to identify preventable breaches like phishing campaigns.

The Cisco Report

Late last year, Cisco published a special cybersecurity report (Cisco’s SMB Cybersecurity Report)(Report) focused how cyberattacks affect SMBs. The Report includes 1,816 survey respondents from 26 countries.

When surveyed, respondents listed these as the most concerning threats.

  • Targeted employee attacks (BEC and phishing)
  • Advanced persistent threats (new malware)
  • Ransomware

Continue reading A Data Breach Can Cost a Small Business $2.5 Million

Does Your Small Business Use these Vulnerable Wi-Fi Routers?

If your company uses these Cisco Wi-Fi Routers, it’s at risk for several types of remote attacks. As reported in Cisco Security Advisories, several vulnerabilities were found in Cisco’s small business Wi-Fi routers.

Affected Devices

The following devices are affected by these vulnerabilities:

  • RV110W Wireless-N VPN Firewall
  • RV130W Wireless-N Multifunction VPN Router
  • RV215W Wireless-N VPN Router

Vulnerabilities

The vulnerabilities allow an attacker to remotely

  • Conduct a cross-site scripting attack against a user of the device
  • Cause a buffer overflow on a targeted device – i.e. denial-of-service attack
  • Execute arbitrary code as root on a targeted device

Preventing an Attack

No patches are currently available. Cisco plans to release updates to address these vulnerabilities in the third quarter of 2016.

If you don’t need the remote management option for these devices we recommend disabling that feature to thwart any attempts to exploit these identified vulnerabilities. To disable remote management, open the web-based management interface for the device, choose Basic Settings > Remote Management. Make sure the Enable box is unchecked.

On a positive note, there’s no evidence so far of attacks using these flaws.

You can view the Cisco Security Advisories here: