Security Issues in Cisco and Jenkins Passed Off as "Linux" Problems

posted by Roy Schestowitz on Oct 18, 2025

Fear, Uncertainty, Doubt (FUD) tactics

There has been some FUD lately in several slopfarms that we mentioned in Slopwatch. The one we mentioned 2 days ago painted a Cisco issue as "Linux" [1-3] and last night we showed how eBPF was painted as GNU and Linux, even if the underlying issue was in Jenkins [4]. Evidence found in AWS, which is proprietary, just like Cisco.

The corporate media is generally bad, but those sites claim to be tech sites. How can they get their reporting this wrong? They repeat and recycle the same lies/spin. █

Related/contextual items from the news:

Intrusions with Cisco SNMP bug facilitate Linux rootkit deployment [Ed: It's a Cisco issue, which they try to twist as "Linux"]

Older Linux systems have been compromised with rootkits in attacks involving the exploitation of a high-severity Cisco IOS and IOS XE Simple Network Management Protocol vulnerability, tracked as CVE-2025-20352, part of the Operation Zero Disco campaign, reports Security Affairs.
Operation Zero Disco: Threat actors targets Cisco SNMP flaw to drop Linux rootkits

Hackers exploit Cisco SNMP flaw CVE-2025-20352 in “Zero Disco” attacks to deploy Linux rootkits on outdated systems, researchers report.
Threat Actors Exploit Cisco SNMP Vulnerability To Install Linux Rootkits

Security researchers from Trend Micro have revealed the details of a sophisticated new cyber campaign dubbed Operation Zero Disco, which leverages a recently disclosed vulnerability in Cisco IOS and IOS XE Software to compromise aging network infrastructure. The attackers have reportedly been exploiting this flaw to implant Linux-based rootkits on unprotected or end-of-life devices, giving them long-term, stealthy access within enterprise environments.
LinkPro Linux Rootkit Uses eBPF to Hide and Activates via Magic TCP Packets [Ed: This issue is in Jenkins]

The infection, per the French cybersecurity company, involved the attackers exploiting an exposed Jenkins server vulnerable to CVE-2024-23897 (CVSS score: 9.8) as the starting point, following which a malicious Docker Hub image named "kvlnt/vv" (now removed) was deployed on several Kubernetes clusters.

Other Recent Techrights' Posts

Web Browsers Are for Rendering Web Page, They Shouldn't Become PDF Editors: Linus Torvalds is quickly learning and speaking about this
Torvalds Capitulated on Rust and Slop, Now He's Paying the Price: they are pushing Microsoft and slop for grifters and scammers
Links 20/05/2026: Looting of Americans for "White Grievance Reparations Fund"; "Mark Zuckerberg Used Shell Companies to Bully Native Hawaiians": Links for the day
SLAPP Censorship - Part 82 Out of 200: British Government Intervenes in the SLAPPs by Brett Wilson LLP: At this stage our matters are dealt with by a layer below that of the Prime Minister (adjacent to it)
LinkedIn Communications Reveal That LinkedIn - Like GitHub - Will Vanish Inside the Belly of Microsoft: This is definitely going to happen.
In Wall Street, Financial Difficulties Drive Shares Up: Wall Street doesn't work that way
The Corrupt Lecture the Non-Corrupt - Part XXVIII - European Patent Office (EPO) Guidebook Says Report Crimes Committed on EPO Premises. Some Did, But President Campinos Covers up for the Culprits.: The staff has long been on strike and the union (SUEPO) organised an enhanced day of action just two days ago
Gemini Links 20/05/2026: Fall of an Empire, "High Tech is a Social Exercise", and Big Cameras: Links for the day
Over at Tux Machines...: GNU/Linux news for the past day
IRC Proceedings: Tuesday, May 19, 2026: IRC logs for Tuesday, May 19, 2026
LinkedIn Layoffs at Microsoft: Probably Well More Than 5% of Staff: In short, it's difficult to believe only 5% are impacted
It's Not Just a Widespread Theory, It's Apparently a Verified Fact: Home Appliances Not Made to Last Long: Washing machine repair man asserts that the machines sold a decade ago could maybe last a decade; now they last barely 5 years.
Whistleblowers Needed: We Are Seeing Many Layoffs in Red Hat (Not Just in China), We Want to Know More: Last week we learned about some people who said they had left Red Hat or are leaving Red Hat
Links 19/05/2026: More Obituaries for Peter G. Neumann, Taiwan Abandoned by Cheeto House for Don's Personal Gain: Links for the day
Links 19/05/2026: Online 'Storage' (Surveillance) Accounts Lower Thresholds (Gmail, Google Drive, and Google Photos), Slop Debacles Expand (False Promises Made to Staff Regarding Compensation): Links for the day
SLAPP Censorship - Part 81 Out of 200: SLAPP Censorship Does Not Work If Your Sole Strategy is Revenge (and You Attack the Family): Both yours and others'
Techrights at 20 (Soon): It does not seek popularity or affirmation from "Establishment" outlets
We Pay More for Less, for Things That Last Less Time and Are Almost Impossible to Repair: Ever noticed how "modern" or "smart" TVs come with dumber and dumber (worse) controllers?
Vista 11 Turns 5 in a Couple of Months. Not Many People Use It.: It is the only supported version of Windows; many people move elsewhere
Head of GitHub Recently Left, Microsoft Need No Longer Report Mass Layoffs There (User Activity is Declining): We've long said that LinkedIn and GitHub, which Microsoft bought, would likely end up like Skype
The Slop Bubble is Already Bursting: Slop is not desirable and the general public is growingly impatient, seeing that slop has improved nothing for them
Gemini Links 19/05/2026: Reliable Old Tech, Collection of Essays: Links for the day
The Corrupt Lecture the Non-Corrupt - Part XXVII - European Patent Office (EPO) Became a "Toxic Work Environment" When Cocaine Addicts Put in Charge: They are putting at risk colleagues by abusing them
Over at Tux Machines...: GNU/Linux news for the past day
IRC Proceedings: Monday, May 18, 2026: IRC logs for Monday, May 18, 2026
Links 18/05/2026: Slop-induced Shortages, Solicitors Regulation Authority Says It's Unable to Deal With Complaints Load (So Regulation Does Not Really Exist): Links for the day
Gemini Links 18/05/2026: Ghost Essay and World Wide Web Considered Broken: Links for the day
Cooperation and Collaboration, on a More Personal Level: Rianne, to me, isn't just a wife; she is also my best friend
IBM Has Payroll Problems (Just Like Microsoft): It's a good thing that many nations around the world are, accordingly if not proactively, divesting from GAFAM
Links 18/05/2026: 25 Years of OLDaily and Dangers of "Living With Too Much Tech": Links for the day
Trips to London: London isn't a bad place, but it's a long journey and we'd rather stay in Manchester and write about technology
SLAPP Censorship - Part 80 Out of 200: Having Run Out of Time to Meet a Judge's Deadline, Microsoft's Graveley Had Garrett's Lawyers Argued My ~190-Page Defence and CounterClaim (DCC) Was Unclear About My Position: Nothing could be further from the truth
Working in the Shell (and Fish): Yesterday we spent about 5 hours on the shells and fish
The Corrupt Lecture the Non-Corrupt - Part XXVI - Campinos Has Put Unfit-for-Employment Drug Addicts in Charge of the European Patent Office (EPO): How many months has Campinos got left before the delegates show him the door?
Over at Tux Machines...: GNU/Linux news for the past day
IRC Proceedings: Sunday, May 17, 2026: IRC logs for Sunday, May 17, 2026
Gemini Links 18/05/2026: Poetry, Sauna, and GNU Taler: Links for the day