The Everything Feed - All Packet Pushers Pods NB540: PQE In PAN-OS; FBI Warns 7-Year Old Cisco Bug Under Attack
Aug 25, 2025
Rich Campagna, SVP of Products at Palo Alto Networks, shares insights on advanced DNS security and the new capabilities of their cloud-based DNS resolver. The discussion highlights the urgent need for organizations to address longstanding vulnerabilities, including a seven-year-old Cisco exploit under active attack. Campagna emphasizes the significance of active DNS security monitoring and the integration of AI in threat prevention, advocating for proactive measures to safeguard network infrastructures against evolving cyber threats.
AI Snips
Chapters
Transcript
Episode notes
Patch The Seven-Year Cisco Vulnerability Now
- Validate and patch Cisco IOS/IOS-XE devices for CVE-2018-0701 immediately if not already patched.
- Use this incident to push for automated, configurable patching to avoid repeated exposure.
Seven-Year Bugs Reveal Operational Gaps
- Many organizations still lack visibility or operational capacity for vulnerability management.
- Vendors ship buggy hardware but customers bear the long-term remediation burden.
Remove Infected Docker Base Images
- Replace infected Docker images and base images that include the backdoored XZ utility immediately.
- Verify container image provenance before deployment to avoid lingering supply-chain backdoors.