Cisco Routers Hacked for Rootkit Deployment - SecurityWeek
A new campaign, Operation ZeroDisco, is exploiting a zero-day vulnerability (CVE-2025-20352) in older Cisco devices to deploy a rootkit. The rootkit, which sets a universal password, allows attackers to evade detection and gain control over compromised devices. Trend Micro recommends contacting Cisco TAC for assistance if a compromise is suspected.
