Cisco warns customers about attacks installing rogue firmware on networking gear
Installing rogue firmware on embedded devices has long been a concern for security researchers, and it seems that such attacks have started to gain ground with hackers.
In an advisory Tuesday, Cisco Systems warned customers that it is aware of a limited number of cases where attackers have replaced the boot firmware on devices running its IOS operating system. IOS runs on most Cisco routers and switches and provides a complex set of networking tools and features.
Attackers used valid administrative credentials in order to replace the ROMMON image on IOS devices, Cisco said.