"Cisco Warns of Password-Spraying Attacks Targeting VPN Services"

Cisco has released a set of recommendations to help customers mitigate password-spraying attacks on Remote Access VPN (RAVPN) services running on Cisco Secure Firewall devices. The company revealed that the attacks have also targeted other remote access VPN services and appear to be part of a reconnaissance operation. In a password-spraying attack, an adversary tries the same password on multiple accounts to log in. According to security researcher Aaron Martin, the activity observed by Cisco is most likely associated with an undocumented malware botnet dubbed "Brutus." This article continues to discuss warnings and recommendations regarding password-spraying attacks targeting VPN services

Bleeping Computer reports "Cisco Warns of Password-Spraying Attacks Targeting VPN Services"

Submitted by grigby1

Submitted by Gregory Rigby on