Not Simon<p>26 March 2024: "<strong>Cisco</strong> was made aware of multiple reports related to password spraying attacks aimed at RAVPN services. It has been noted by Talos that these attacks are not limited to Cisco products but also third-party VPN concentrators. Depending on your environment, the attacks can cause accounts to be locked, resulting in Denial of Service (DoS)-like conditions. This activity appears to be related to reconnaissance efforts." No CVE ID associated. Indicators of attack are provided. 🔗 <a href="https://www.cisco.com/c/en/us/support/docs/security/secure-firewall-threat-defense/221806-password-spray-attacks-impacting-custome.html" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">cisco.com/c/en/us/support/docs</span><span class="invisible">/security/secure-firewall-threat-defense/221806-password-spray-attacks-impacting-custome.html</span></a></p><p>See related <strong>Bleeping Computer</strong> reporting: <a href="https://www.bleepingcomputer.com/news/security/cisco-warns-of-password-spraying-attacks-targeting-vpn-services/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">bleepingcomputer.com/news/secu</span><span class="invisible">rity/cisco-warns-of-password-spraying-attacks-targeting-vpn-services/</span></a></p><p><a href="https://infosec.exchange/tags/Cisco" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Cisco</span></a> <a href="https://infosec.exchange/tags/passwordspray" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>passwordspray</span></a> <a href="https://infosec.exchange/tags/VPN" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>VPN</span></a> <a href="https://infosec.exchange/tags/Fortinet" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Fortinet</span></a> <a href="https://infosec.exchange/tags/PaloAlto" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PaloAlto</span></a> <a href="https://infosec.exchange/tags/SonicWall" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>SonicWall</span></a> <a href="https://infosec.exchange/tags/botnet" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>botnet</span></a> <a href="https://infosec.exchange/tags/Brutus" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Brutus</span></a></p>