Trusted Design

Cisco default credentials - again!

概要

A vulnerability in the remote support functionality of Cisco WSAv, Cisco ESAv, and Cisco SMAv Software could allow an unauthenticated, remote attacker to connect to the affected system with the privileges of the root user.

Created: 2026-02-23

Indicators

Indicatorsは見つかっていない。

類似Pulses

このPulseに関連する脅威アクター (事実ベース)

Gamaredon Group

Score: 3.62
Matched TTPs:
  • T1021.005 - VNC
MITREへのリンク →

FIN7

Score: 18.40
Matched TTPs:
  • T1021.005 - VNC
  • T1021.004 - SSH
  • T1190 - Exploit Public-Facing Application
  • T1219 - Remote Access Tools
  • T1210 - Exploitation of Remote Services
  • T1078 - Valid Accounts
  • T1021.001 - Remote Desktop Protocol
  • T1078.003 - Local Accounts
MITREへのリンク →

GCMAN

Score: 5.86
Matched TTPs:
  • T1021.005 - VNC
  • T1021.004 - SSH
MITREへのリンク →

Fox Kitten

Score: 13.15
Matched TTPs:
  • T1021.005 - VNC
  • T1021.004 - SSH
  • T1190 - Exploit Public-Facing Application
  • T1210 - Exploitation of Remote Services
  • T1078 - Valid Accounts
  • T1021.001 - Remote Desktop Protocol
MITREへのリンク →

TeamTNT

Score: 6.76
Matched TTPs:
  • T1133 - External Remote Services
  • T1021.004 - SSH
  • T1219 - Remote Access Tools
MITREへのリンク →

FIN13

Score: 18.89
Matched TTPs:
  • T1133 - External Remote Services
  • T1021.004 - SSH
  • T1190 - Exploit Public-Facing Application
  • T1021.006 - Windows Remote Management
  • T1078.001 - Default Accounts
  • T1021.001 - Remote Desktop Protocol
  • T1556 - Modify Authentication Process
MITREへのリンク →

Ember Bear

Score: 13.62
Matched TTPs:
  • T1133 - External Remote Services
  • T1190 - Exploit Public-Facing Application
  • T1021 - Remote Services
  • T1078.001 - Default Accounts
  • T1210 - Exploitation of Remote Services
MITREへのリンク →

APT18

Score: 3.36
Matched TTPs:
  • T1133 - External Remote Services
  • T1078 - Valid Accounts
MITREへのリンク →

Sandworm Team

Score: 11.27
Matched TTPs:
  • T1133 - External Remote Services
  • T1588.006 - Vulnerabilities
  • T1190 - Exploit Public-Facing Application
  • T1219 - Remote Access Tools
  • T1078 - Valid Accounts
MITREへのリンク →

Volt Typhoon

Score: 12.42
Matched TTPs:
  • T1133 - External Remote Services
  • T1588.006 - Vulnerabilities
  • T1190 - Exploit Public-Facing Application
  • T1078 - Valid Accounts
  • T1068 - Exploitation for Privilege Escalation
  • T1021.001 - Remote Desktop Protocol
MITREへのリンク →

Velvet Ant

Score: 8.73
Matched TTPs:
  • T1133 - External Remote Services
  • T1078.003 - Local Accounts
  • T1211 - Exploitation for Defense Evasion
MITREへのリンク →

Scattered Spider

Score: 16.80
Matched TTPs:
  • T1133 - External Remote Services
  • T1021.004 - SSH
  • T1078 - Valid Accounts
  • T1068 - Exploitation for Privilege Escalation
  • T1219.002 - Remote Desktop Software
  • T1538 - Cloud Service Dashboard
  • T1021.001 - Remote Desktop Protocol
MITREへのリンク →

APT41

Score: 6.48
Matched TTPs:
  • T1133 - External Remote Services
  • T1190 - Exploit Public-Facing Application
  • T1078 - Valid Accounts
  • T1021.001 - Remote Desktop Protocol
MITREへのリンク →

LAPSUS$

Score: 9.59
Matched TTPs:
  • T1133 - External Remote Services
  • T1078 - Valid Accounts
  • T1068 - Exploitation for Privilege Escalation
  • T1531 - Account Access Removal
MITREへのリンク →

OilRig

Score: 15.55
Matched TTPs:
  • T1133 - External Remote Services
  • T1021.004 - SSH
  • T1219 - Remote Access Tools
  • T1078 - Valid Accounts
  • T1068 - Exploitation for Privilege Escalation
  • T1555.004 - Windows Credential Manager
  • T1021.001 - Remote Desktop Protocol
MITREへのリンク →

GALLIUM

Score: 4.83
Matched TTPs:
  • T1133 - External Remote Services
  • T1190 - Exploit Public-Facing Application
  • T1078 - Valid Accounts
MITREへのリンク →

Ke3chang

Score: 4.83
Matched TTPs:
  • T1133 - External Remote Services
  • T1190 - Exploit Public-Facing Application
  • T1078 - Valid Accounts
MITREへのリンク →

Wizard Spider

Score: 18.66
Matched TTPs:
  • T1133 - External Remote Services
  • T1021 - Remote Services
  • T1021.006 - Windows Remote Management
  • T1210 - Exploitation of Remote Services
  • T1078 - Valid Accounts
  • T1555.004 - Windows Credential Manager
  • T1021.001 - Remote Desktop Protocol
MITREへのリンク →

APT29

Score: 9.59
Matched TTPs:
  • T1133 - External Remote Services
  • T1190 - Exploit Public-Facing Application
  • T1078 - Valid Accounts
  • T1068 - Exploitation for Privilege Escalation
  • T1078.003 - Local Accounts
MITREへのリンク →

Kimsuky

Score: 13.80
Matched TTPs:
  • T1133 - External Remote Services
  • T1190 - Exploit Public-Facing Application
  • T1055.012 - Process Hollowing
  • T1219.002 - Remote Desktop Software
  • T1021.001 - Remote Desktop Protocol
  • T1078.003 - Local Accounts
MITREへのリンク →

FIN5

Score: 3.36
Matched TTPs:
  • T1133 - External Remote Services
  • T1078 - Valid Accounts
MITREへのリンク →

Threat Group-3390

Score: 16.26
Matched TTPs:
  • T1133 - External Remote Services
  • T1190 - Exploit Public-Facing Application
  • T1021.006 - Windows Remote Management
  • T1210 - Exploitation of Remote Services
  • T1078 - Valid Accounts
  • T1055.012 - Process Hollowing
  • T1068 - Exploitation for Privilege Escalation
MITREへのリンク →

Sea Turtle

Score: 7.50
Matched TTPs:
  • T1133 - External Remote Services
  • T1190 - Exploit Public-Facing Application
  • T1078 - Valid Accounts
  • T1078.003 - Local Accounts
MITREへのリンク →

GOLD SOUTHFIELD

Score: 6.00
Matched TTPs:
  • T1133 - External Remote Services
  • T1190 - Exploit Public-Facing Application
  • T1219 - Remote Access Tools
MITREへのリンク →

Chimera

Score: 8.45
Matched TTPs:
  • T1133 - External Remote Services
  • T1021.006 - Windows Remote Management
  • T1078 - Valid Accounts
  • T1021.001 - Remote Desktop Protocol
MITREへのリンク →

Dragonfly

Score: 9.22
Matched TTPs:
  • T1133 - External Remote Services
  • T1190 - Exploit Public-Facing Application
  • T1210 - Exploitation of Remote Services
  • T1078 - Valid Accounts
  • T1021.001 - Remote Desktop Protocol
MITREへのリンク →

Akira

Score: 11.73
Matched TTPs:
  • T1133 - External Remote Services
  • T1219 - Remote Access Tools
  • T1078 - Valid Accounts
  • T1531 - Account Access Removal
  • T1021.001 - Remote Desktop Protocol
MITREへのリンク →

APT28

Score: 17.94
Matched TTPs:
  • T1133 - External Remote Services
  • T1190 - Exploit Public-Facing Application
  • T1210 - Exploitation of Remote Services
  • T1078 - Valid Accounts
  • T1068 - Exploitation for Privilege Escalation
  • T1550.001 - Application Access Token
  • T1211 - Exploitation for Defense Evasion
MITREへのリンク →

Play

Score: 7.50
Matched TTPs:
  • T1133 - External Remote Services
  • T1190 - Exploit Public-Facing Application
  • T1078 - Valid Accounts
  • T1078.003 - Local Accounts
MITREへのリンク →

Leviathan

Score: 8.71
Matched TTPs:
  • T1133 - External Remote Services
  • T1021.004 - SSH
  • T1190 - Exploit Public-Facing Application
  • T1078 - Valid Accounts
  • T1021.001 - Remote Desktop Protocol
MITREへのリンク →

Storm-0501

Score: 11.68
Matched TTPs:
  • T1588.006 - Vulnerabilities
  • T1190 - Exploit Public-Facing Application
  • T1021.006 - Windows Remote Management
  • T1219.002 - Remote Desktop Software
MITREへのリンク →

Lazarus Group

Score: 13.47
Matched TTPs:
  • T1021.004 - SSH
  • T1574.013 - KernelCallbackTable
  • T1078 - Valid Accounts
  • T1021.001 - Remote Desktop Protocol
  • T1529 - System Shutdown/Reboot
MITREへのリンク →

BlackTech

Score: 3.71
Matched TTPs:
  • T1021.004 - SSH
  • T1190 - Exploit Public-Facing Application
MITREへのリンク →

Aquatic Panda

Score: 7.73
Matched TTPs:
  • T1021.004 - SSH
  • T1021 - Remote Services
  • T1021.001 - Remote Desktop Protocol
MITREへのリンク →

Storm-1811

Score: 5.16
Matched TTPs:
  • T1021.004 - SSH
  • T1219.002 - Remote Desktop Software
MITREへのリンク →

Salt Typhoon

Score: 3.71
Matched TTPs:
  • T1021.004 - SSH
  • T1190 - Exploit Public-Facing Application
MITREへのリンク →

APT5

Score: 5.35
Matched TTPs:
  • T1021.004 - SSH
  • T1190 - Exploit Public-Facing Application
  • T1021.001 - Remote Desktop Protocol
MITREへのリンク →

UNC3886

Score: 19.92
Matched TTPs:
  • T1021.004 - SSH
  • T1190 - Exploit Public-Facing Application
  • T1078.001 - Default Accounts
  • T1548 - Abuse Elevation Control Mechanism
  • T1212 - Exploitation for Credential Access
  • T1078 - Valid Accounts
  • T1068 - Exploitation for Privilege Escalation
MITREへのリンク →

menuPass

Score: 12.68
Matched TTPs:
  • T1021.004 - SSH
  • T1190 - Exploit Public-Facing Application
  • T1210 - Exploitation of Remote Services
  • T1078 - Valid Accounts
  • T1055.012 - Process Hollowing
  • T1021.001 - Remote Desktop Protocol
MITREへのリンク →

Indrik Spider

Score: 5.31
Matched TTPs:
  • T1021.004 - SSH
  • T1078 - Valid Accounts
  • T1021.001 - Remote Desktop Protocol
MITREへのリンク →

Rocke

Score: 3.71
Matched TTPs:
  • T1021.004 - SSH
  • T1190 - Exploit Public-Facing Application
MITREへのリンク →

APT39

Score: 6.78
Matched TTPs:
  • T1021.004 - SSH
  • T1190 - Exploit Public-Facing Application
  • T1078 - Valid Accounts
  • T1021.001 - Remote Desktop Protocol
MITREへのリンク →

Magic Hound

Score: 6.74
Matched TTPs:
  • T1190 - Exploit Public-Facing Application
  • T1078.001 - Default Accounts
  • T1021.001 - Remote Desktop Protocol
MITREへのリンク →

Medusa Group

Score: 10.76
Matched TTPs:
  • T1190 - Exploit Public-Facing Application
  • T1219 - Remote Access Tools
  • T1078 - Valid Accounts
  • T1021.001 - Remote Desktop Protocol
  • T1529 - System Shutdown/Reboot
MITREへのリンク →

BlackByte

Score: 12.38
Matched TTPs:
  • T1190 - Exploit Public-Facing Application
  • T1219 - Remote Access Tools
  • T1078 - Valid Accounts
  • T1055.012 - Process Hollowing
  • T1068 - Exploitation for Privilege Escalation
  • T1021.001 - Remote Desktop Protocol
MITREへのリンク →

Agrius

Score: 3.12
Matched TTPs:
  • T1190 - Exploit Public-Facing Application
  • T1021.001 - Remote Desktop Protocol
MITREへのリンク →

Blue Mockingbird

Score: 3.12
Matched TTPs:
  • T1190 - Exploit Public-Facing Application
  • T1021.001 - Remote Desktop Protocol
MITREへのリンク →

Winter Vivern

Score: 6.01
Matched TTPs:
  • T1190 - Exploit Public-Facing Application
  • T1056.003 - Web Portal Capture
MITREへのリンク →

Earth Lusca

Score: 4.22
Matched TTPs:
  • T1190 - Exploit Public-Facing Application
  • T1210 - Exploitation of Remote Services
MITREへのリンク →

INC Ransom

Score: 7.13
Matched TTPs:
  • T1190 - Exploit Public-Facing Application
  • T1219 - Remote Access Tools
  • T1078 - Valid Accounts
  • T1021.001 - Remote Desktop Protocol
MITREへのリンク →

Axiom

Score: 9.08
Matched TTPs:
  • T1190 - Exploit Public-Facing Application
  • T1078 - Valid Accounts
  • T1563.002 - RDP Hijacking
  • T1021.001 - Remote Desktop Protocol
MITREへのリンク →

HAFNIUM

Score: 10.36
Matched TTPs:
  • T1190 - Exploit Public-Facing Application
  • T1068 - Exploitation for Privilege Escalation
  • T1550.001 - Application Access Token
  • T1078.003 - Local Accounts
MITREへのリンク →

MuddyWater

Score: 6.81
Matched TTPs:
  • T1190 - Exploit Public-Facing Application
  • T1219 - Remote Access Tools
  • T1210 - Exploitation of Remote Services
MITREへのリンク →

Carbanak

Score: 4.02
Matched TTPs:
  • T1219 - Remote Access Tools
  • T1078 - Valid Accounts
MITREへのリンク →

Cobalt Group

Score: 6.34
Matched TTPs:
  • T1219 - Remote Access Tools
  • T1068 - Exploitation for Privilege Escalation
  • T1021.001 - Remote Desktop Protocol
MITREへのリンク →

Tonto Team

Score: 4.84
Matched TTPs:
  • T1210 - Exploitation of Remote Services
  • T1068 - Exploitation for Privilege Escalation
MITREへのリンク →

RedCurl

Score: 4.13
Matched TTPs:
  • T1056.002 - GUI Input Capture
MITREへのリンク →

FIN4

Score: 5.56
Matched TTPs:
  • T1056.002 - GUI Input Capture
  • T1078 - Valid Accounts
MITREへのリンク →

FIN8

Score: 5.17
Matched TTPs:
  • T1078 - Valid Accounts
  • T1068 - Exploitation for Privilege Escalation
  • T1021.001 - Remote Desktop Protocol
MITREへのリンク →

Silence

Score: 3.07
Matched TTPs:
  • T1078 - Valid Accounts
  • T1021.001 - Remote Desktop Protocol
MITREへのリンク →

FIN10

Score: 5.74
Matched TTPs:
  • T1078 - Valid Accounts
  • T1021.001 - Remote Desktop Protocol
  • T1078.003 - Local Accounts
MITREへのリンク →

APT33

Score: 3.52
Matched TTPs:
  • T1078 - Valid Accounts
  • T1068 - Exploitation for Privilege Escalation
MITREへのリンク →

FIN6

Score: 5.17
Matched TTPs:
  • T1078 - Valid Accounts
  • T1068 - Exploitation for Privilege Escalation
  • T1021.001 - Remote Desktop Protocol
MITREへのリンク →

Gorgon Group

Score: 3.15
Matched TTPs:
  • T1055.012 - Process Hollowing
MITREへのリンク →

Patchwork

Score: 4.80
Matched TTPs:
  • T1055.012 - Process Hollowing
  • T1021.001 - Remote Desktop Protocol
MITREへのリンク →

TA2541

Score: 3.15
Matched TTPs:
  • T1055.012 - Process Hollowing
MITREへのリンク →

Turla

Score: 8.38
Matched TTPs:
  • T1068 - Exploitation for Privilege Escalation
  • T1555.004 - Windows Credential Manager
  • T1078.003 - Local Accounts
MITREへのリンク →

APT32

Score: 4.76
Matched TTPs:
  • T1068 - Exploitation for Privilege Escalation
  • T1078.003 - Local Accounts
MITREへのリンク →

Stealth Falcon

Score: 3.62
Matched TTPs:
  • T1555.004 - Windows Credential Manager
MITREへのリンク →

APT38

Score: 3.62
Matched TTPs:
  • T1529 - System Shutdown/Reboot
MITREへのリンク →

APT37

Score: 3.62
Matched TTPs:
  • T1529 - System Shutdown/Reboot
MITREへのリンク →

このPulseに関連する脅威アクター (推論ベース)

UNC3886

Score: 0.76
Matched TTPs:
  • T1190 - Exploit Public-Facing Application
  • T1078.001 - Default Accounts
  • T1078 - Valid Accounts
  • T1068 - Exploitation for Privilege Escalation
  • T1212 - Exploitation for Credential Access
  • T1021.004 - SSH
  • T1548 - Abuse Elevation Control Mechanism
MITREへのリンク →

FIN7

Score: 0.72
Matched TTPs:
  • T1190 - Exploit Public-Facing Application
  • T1021.005 - VNC
  • T1078.003 - Local Accounts
  • T1078 - Valid Accounts
  • T1021.001 - Remote Desktop Protocol
  • T1021.004 - SSH
  • T1210 - Exploitation of Remote Services
  • T1219 - Remote Access Tools
MITREへのリンク →

FIN13

Score: 0.72
Matched TTPs:
  • T1190 - Exploit Public-Facing Application
  • T1078.001 - Default Accounts
  • T1133 - External Remote Services
  • T1556 - Modify Authentication Process
  • T1021.006 - Windows Remote Management
  • T1021.001 - Remote Desktop Protocol
  • T1021.004 - SSH
MITREへのリンク →

Wizard Spider

Score: 0.70
Matched TTPs:
  • T1555.004 - Windows Credential Manager
  • T1078 - Valid Accounts
  • T1133 - External Remote Services
  • T1021.006 - Windows Remote Management
  • T1021.001 - Remote Desktop Protocol
  • T1021 - Remote Services
  • T1210 - Exploitation of Remote Services
MITREへのリンク →

APT28

Score: 0.69
Matched TTPs:
  • T1190 - Exploit Public-Facing Application
  • T1078 - Valid Accounts
  • T1068 - Exploitation for Privilege Escalation
  • T1133 - External Remote Services
  • T1550.001 - Application Access Token
  • T1210 - Exploitation of Remote Services
  • T1211 - Exploitation for Defense Evasion
MITREへのリンク →

Scattered Spider

Score: 0.65
Matched TTPs:
  • T1219.002 - Remote Desktop Software
  • T1068 - Exploitation for Privilege Escalation
  • T1078 - Valid Accounts
  • T1133 - External Remote Services
  • T1021.001 - Remote Desktop Protocol
  • T1021.004 - SSH
  • T1538 - Cloud Service Dashboard
MITREへのリンク →

Threat Group-3390

Score: 0.65
Matched TTPs:
  • T1190 - Exploit Public-Facing Application
  • T1055.012 - Process Hollowing
  • T1078 - Valid Accounts
  • T1133 - External Remote Services
  • T1068 - Exploitation for Privilege Escalation
  • T1021.006 - Windows Remote Management
  • T1210 - Exploitation of Remote Services
MITREへのリンク →

OilRig

Score: 0.60
Matched TTPs:
  • T1555.004 - Windows Credential Manager
  • T1068 - Exploitation for Privilege Escalation
  • T1078 - Valid Accounts
  • T1133 - External Remote Services
  • T1021.001 - Remote Desktop Protocol
  • T1021.004 - SSH
  • T1219 - Remote Access Tools
MITREへのリンク →

Related CVEs

このPulseに見つかったCVEはありません。

Pulse – 脅威アクター グラフ

← Pulse一覧に戻る