Cyber

Cisco’s WebEx Chrome plugin will execute evil code, install malware

“Malicious websites can remotely execute commands on Windows systems that have Cisco WebEx’s Chrome extension installed. About 20 million people actively use this broken software.

All attackers need to know is a ‘magic URL’ hidden within WebEx, Google Project Zero bug hunter Tavis Ormandy revealed on Monday. We think a secret ‘magic URL’ is the nicest possible way of saying ‘backdoor,’ be it deliberate or accidental.”

Source: Cisco’s WebEx Chrome plugin will execute evil code, install malware via secret ‘magic URL’ • The Register

OODA Analyst

OODA Analyst

OODA is comprised of a unique team of international experts capable of providing advanced intelligence and analysis, strategy and planning support, risk and threat management, training, decision support, crisis response, and security services to global corporations and governments.