News from the AI & ML world

DeeperML - #cisco

@computerworld.com //

Cisco Enhances Webex with Agentic AI Collaboration Features - Cisco enhances its Webex platform with new AI-powered features, including Webex AI Agent and expanded Cisco AI Assistant, to improve customer service and employee collaboration through automation and predictive capabilities.
References: AiThority , SiliconANGLE , Dataconomy ...
Cisco is enhancing its Webex platform with new AI-powered features designed to improve both customer service and employee collaboration. Announced at Enterprise Connect, the updates focus on what Cisco calls "agentic AI collaboration," with the goal of anticipating needs, automating tasks, and boosting productivity. Key announcements include the general availability of Webex AI Agent and new features for the Cisco AI Assistant in Webex Contact Center and Webex Suite, along with solutions for Webex Calling and device integrations.

Cisco is aiming to transform traditional contact centers into customer experience centers by making use of AI. Webex AI Agent, set for general availability on March 31, 2025, is a 24/7 self-service solution that uses natural language to handle routine customer questions and fulfill requests. The Cisco AI Assistant for Webex Contact Center will also receive new features, including suggested responses and real-time transcription for agents. Workflow automation in Cisco AI Assistant for Webex will streamline processes by integrating with enterprise applications like Salesforce, ServiceNow, and Jira, to improve efficiency.

Recommended read:
References :
  • AiThority: Cisco Paves the Way with Agentic AI Collaboration
  • SiliconANGLE: Cisco debuts new AI-powered customer service features for Webex
  • www.itpro.com: Cisco unveils new agentic AI tools to improve customer and employee experience
  • Dataconomy: At Enterprise Connect, Cisco announced new AI-powered solutions and updates to its Webex collaboration platform, focusing on what the company terms “agentic AI collaboration.â€� The announcements include the general availability of Webex AI Agent, new features for the Cisco AI Assistant in Webex Contact Center and Webex Suite, and solutions for Webex Calling and device
  • www.computerworld.com: Cisco’s AI agents for WebEx aim to improve customer service
@cyberscoop.com //

Salt Typhoon's Ongoing Telecom Attacks - Chinese nation-state actor Salt Typhoon targets telecommunications providers, breaching five firms between December 2024 and January 2025, exploiting Cisco vulnerabilities despite sanctions.
The Chinese nation-state hacking group Salt Typhoon, despite facing US sanctions, continues to actively target telecommunications providers. Between December 2024 and January 2025, Recorded Future observed Salt Typhoon breaching five telecom firms, including a US-based affiliate of a UK telecom provider, a US internet service provider, and companies in Italy, South Africa, and Thailand. The group also performed reconnaissance on a Myanmar-based telecom provider.

Salt Typhoon exploited vulnerabilities in Cisco IOS XE software, specifically CVE-2023-20198 and CVE-2023-20273, to compromise unpatched Cisco devices. They attempted to compromise over 1,000 Cisco routers globally, focusing on those within telecom networks. Additionally, Salt Typhoon targeted universities, including the University of California and Utah Tech, potentially seeking access to research related to telecommunications and engineering.

Recommended read:
References :
  • cyberscoop.com: Salt Typhoon remains active, hits more telecom networks via Cisco routers
  • The Register - Security: More victims of China's Salt Typhoon crew emerge: Telcos just now hit via Cisco bugs
  • Carly Page: The China-backed Salt Typhoon group is still hacking telecommunications providers, despite government sanctions. Recorded Future says Salt Typhoon breached five firms between December and January, including a US affiliate of a prominent UK provider and a US-based ISP
  • techcrunch.com: The China-backed Salt Typhoon group is still hacking telecommunications providers, despite government sanctions.
  • www.wired.com: Wired's coverage of Salt Typhoon's ongoing hacking activities.
  • Threats | CyberScoop: Salt Typhoon remains active, hits more telecom networks via Cisco routers
  • cyberinsider.com: Chinese Hackers Breach Cisco Devices in Global Telecom Attacks
  • securebulletin.com: RedMike (Salt Typhoon) continues global Telecom attacks
  • CyberInsider: Chinese Hackers Breach Cisco Devices in Global Telecom Attacks
  • Secure Bulletin: Report on RedMike's continued attacks on telecom providers.
  • Talkback Resources: Salt Typhoon Targeting Old Cisco Vulnerabilities in Fresh Telecom Hacks [exp] [net]
  • Talkback Resources: Chinese state-sponsored APT group Salt Typhoon targets telecommunications providers and universities by exploiting Cisco vulnerabilities, creating privileged accounts, bypassing firewalls, and exfiltrating data using GRE tunnels, prompting organizations to patch devices, enforce access controls, and monitor for unauthorized changes.
  • Talkback Resources: Salt Typhoon Targeting Old Cisco Vulnerabilities in Fresh Telecom Hacks
  • PCMag UK security: China's Salt Typhoon Spies Are Still Eavesdropping on Global Networks
  • ciso2ciso.com: Salt Typhoon Targeting Old Cisco Vulnerabilities in Fresh Telecom Hacks
  • ciso2ciso.com: Salt Typhoon Targeting Old Cisco Vulnerabilities in Fresh Telecom Hacks – Source: www.securityweek.com
  • securityaffairs.com: China-linked APT Salt Typhoon breached telecoms by exploiting Cisco router flaws
  • securityaffairs.com: China-linked APT Salt Typhoon breached telecoms by exploiting Cisco router flaws
  • BleepingComputer: China's Salt Typhoon hackers are still actively targeting telecoms worldwide and have breached more U.S. telecommunications providers via unpatched Cisco IOS XE network devices.
  • industrialcyber.co: Insikt Group details RedMike cyber espionage campaign on telecom providers using Cisco vulnerabilities
  • securityonline.info: Cybersecurity researchers at Insikt Group have identified an ongoing cyber espionage campaign by RedMike (also tracked as Salt Typhoon).
  • Industrial Cyber: Insikt Group details RedMike cyber espionage campaign on telecom providers using Cisco vulnerabilities
  • SecureWorld News: Salt Typhoon Expands Espionage Campaign, Targets Cisco Routers
  • Cisco Talos Blog: Weathering the storm: In the midst of a Typhoon
  • cyberscoop.com: Cisco Talos observed the campaign targeting major U.S. telecommunication companies and observed the attackers primarily used legitimate login credentials to gain initial access, making detection and prevention difficult.
  • cyberscoop.com: Salt Typhoon gained initial access to telecoms through Cisco devices
  • securityaffairs.com: Salt Typhoon used custom malware JumbledPath to spy U.S. telecom providers
@www.networkworld.com //

Cisco and Mistral AI Partner to Enhance Customer Experience - Cisco partners with Mistral AI to integrate AI Agents into Webex Contact Center, enhancing customer experience and streamlining renewal proposal creation with real-time analysis and automation.
References: newsroom.cisco.com , CX Today ,
Cisco has partnered with Mistral AI to enhance customer experience through AI-driven solutions. The first jointly developed AI Agent from this strategic partnership is the AI Renewals Agent, designed to streamline and improve the renewal proposal creation process. By analyzing data from over 50 sources, it provides real-time sentiment analysis, recommendations, intelligent automation, and personalization, all focused on customer outcomes and key performance indicators.

The AI Renewals Agent operates on-premises to ensure data security, privacy, and compliance, while also allowing for performance tuning and cost optimization. Cisco estimates that the AI Renewal Agent could reduce the time spent building a renewal proposal and preparing for a customer engagement by as much as 20%, with further improvements expected as the AI agent learns and automates more workflows. Furthermore, Cisco's AI Assistant is now available on the Webex Contact Center which offers automated guidance, insights, and summaries to optimize customer interactions.

Recommended read:
References :
  • newsroom.cisco.com: Cisco today announced the first, jointly developed AI Agent from its strategic partnership with Mistral AI, one of Europe’s leading providers of AI solutions.
  • CX Today: Cisco Makes Its AI Assistant Available on the Webex Contact Center, Integrates an AI Agent
  • www.networkworld.com: Cisco rolled out its first of many AI agents codeveloped with partner Mistral AI, a genAI and large language model (LLM) startup.
Ameer Owda@socradar.io //

Cisco ISE Critical Flaws Allow Remote Execution - Cisco addressed two critical remote code execution flaws in its Identity Services Engine (ISE) that could allow a remote attacker with read-only administrative privileges to execute arbitrary commands on affected devices.
Cisco has released patches to address two critical remote code execution vulnerabilities in its Identity Services Engine (ISE). The flaws, tracked as CVE-2025-20124 (CVSS score 9.9) and CVE-2025-20125 (CVSS score 9.1), could allow a remote attacker with read-only administrative privileges to execute arbitrary commands on affected devices. The vulnerabilities could prevent privilege escalation and system configuration changes.

The first vulnerability, CVE-2025-20124, is due to insecure deserialization of user-supplied Java byte streams, allowing attackers to execute arbitrary commands and elevate privileges by sending a crafted serialized Java object to an affected API. The second, CVE-2025-20125, is an authorization bypass issue that could allow attackers to obtain sensitive information, modify system configurations, and restart the node by sending a crafted HTTP request to a specific API. Cisco warns that there are no workarounds, advising customers to migrate to a fixed software release as soon as possible.

Recommended read:
References :
  • securityaffairs.com: Cisco addressed critical flaws in Identity Services Engine, preventing privilege escalation and system configuration changes.
  • securityonline.info: CVE-2025-20124 (CVSS 9.9) & CVE-2025-20125 (CVSS 9.1): Cisco Patches Critical Flaws in Identity Services Engine
  • ciso2ciso.com: Cisco addressed two critical flaws in its Identity Services Engine (ISE) – Source: securityaffairs.com
  • ciso2ciso.com: Cisco addressed two critical flaws in its Identity Services Engine (ISE) – Source: securityaffairs.com
  • securityonline.info: Cisco has issued a security advisory addressing two critical vulnerabilities in its Identity Services Engine (ISE), a network
  • Pyrzout :vm:: Cisco Identity Services Engine Stored Cross-Site Scripting Vulnerabilities – Source:sec.cloudapps.cisco.com #'Cyber
  • BleepingComputer: Cisco has fixed two critical Identity Services Engine (ISE) vulnerabilities that can let attackers with read-only admin privileges bypass authorization and run commands as root.
  • socradar.io: Critical Cisco ISE Vulnerabilities Patched: CVE-2025-20124 & CVE-2025-20125
  • The Hacker News: Cisco Patches Critical ISE Vulnerabilities Enabling Root CmdExec and PrivEsc
  • www.csoonline.com: Cisco’s ISE bugs could allow root-level command execution
  • www.bleepingcomputer.com: Cisco has fixed two critical Identity Services Engine (ISE) vulnerabilities that can let attackers with read-only admin privileges bypass authorization and run commands as root.
  • ciso2ciso.com: Cisco Patches Critical ISE Vulnerabilities Enabling Root CmdExec and PrivEsc – Source:thehackernews.com
  • ciso2ciso.com: Cisco Patches Critical ISE Vulnerabilities Enabling Root CmdExec and PrivEsc – Source:thehackernews.com
  • ciso2ciso.com: Cisco’s ISE bugs could allow root-level command execution – Source: www.csoonline.com

Benchmarks

Blogs

Research Tools