Cisco Confirms Chinese Hacker Group Salt Typhoon Exploited Known Security Flaw

Cisco has confirmed that the Chinese hacker group Salt Typhoon exploited a security vulnerability known as CVE-2018-0171 and obtained legitimate login credentials to target major American telecommunications companies. This campaign allowed the attackers to persist in the targeted environments through equipment from multiple vendors. The impacts include unauthorized access and persistence in the targeted networks. Cisco recommends patching the CVE-2018-0171 vulnerability and strengthening credential security.