CISA issues an emergency directive ordering US federal agencies to secure their Cisco firewall devices against two flaws exploited in zero-day attacks
CISA has issued a new emergency directive ordering U.S. federal agencies to secure their Cisco firewall devices against two flaws that have been exploited in zero-day attacks.
BleepingComputer Sergiu Gatlan
Related Coverage
- CISA alerts federal agencies of widespread attacks using Cisco zero-days CyberScoop · Matt Kapko
- ED 25-03: Identify and Mitigate Potential Compromise of Cisco Devices CISA
- Cisco Event Response: Continued Attacks Against Cisco Firewalls Cisco
- CISA Issues Emergency Directive Requiring Federal Agencies to Identify and Mitigate Cisco Zero-Day Vulnerabilities CISA
- NCSC warns of persistent malware campaign targeting Cisco devices National Cyber Security Centre
- CISA orders agencies to fix Cisco firewall zero day flaws by noon today Metacurity · Cynthia B Brumfield
- U.S. government scrambles to stop new hacking campaign blamed on China Washington Post · Joseph Menn
- US Government tells agencies to patch Cisco firewalls immediately, or face attack TechRadar · Sead Fadilpašić
- Federal agencies given one day to patch exploited Cisco firewall bugs The Record · Jonathan Greig
- Cisco Firewall Zero-Days Exploited In China-Linked ArcaneDoor Attacks SecurityWeek · Ionut Arghire
- Cisco ASA 0-Day RCE Vulnerability Actively Exploited in the Wild Cyber Security News · Florence Nightingale
- ArcaneDoor Threat Actor Resurfaces in Continued Attacks Against Cisco Firewalls Infosecurity · Beth Maundrill
- Cisco ASA customers urged to take immediate action as NCSC, CISA issue critical vulnerability warnings ITPro · Emma Woollacott
- CISA Orders Emergency Action on Malware Targeting Cisco Firewalls CyberInsider · Bill Mann
- Cisco ASA zero-day vulnerabilities exploited in sophisticated attacks Help Net Security · Zeljka Zorz
- CISA Emergency Directive 25-03: Identify and Mitigate Potential Compromise of Cisco Devices DataBreaches.Net
- U.S. agencies ordered to patch Cisco devices amid hacking spree Axios · Sam Sabin
- CISA orders feds to patch Cisco flaws used to hack multiple agencies Cybersecurity Dive · Eric Geller
- U.S. CISA adds CISCO Secure Firewall ASA and Secure FTD flaws to its Known Exploited Vulnerabilities catalog Security Affairs · Pierluigi Paganini
- CISA: ‘Emergency’ Response Needed Amid Cisco Firewall Attacks CRN · Kyle Alspach
- Urgent: Cisco ASA Zero-Day Duo Under Attack; CISA Triggers Emergency Mitigation Directive The Hacker News
- Supplemental Direction ED 25-03: Core Dump and Hunt Instructions CISA
- ‼️Running Cisco ASAs / Firepower? You need to check this out now to see if you are affected.‼️ … Jason Gintert
Discussion
-
@cybercentre_ca
@cybercentre_ca
on x
#CyberAlert | Vulnerabilities impacting Cisco ASA and FTD devices The Cyber Centre is aware of exploitation targeting Cisco ASA 5500-X Series devices that run Cisco Secure Firewall ASA software with VPN web services enabled. https://www.cyber.gc.ca/... [image]
-
@ericgeller
Eric Geller
on x
Breaking: @CISAgov orders agencies to analyze and patch Cisco networking equipment following the discovery of critical vulnerabilities being exploited by “an advanced threat actor.” https://www.cisa.gov/... Cisco alert: https://sec.cloudapps.cisco.com/ ... [image]
-
@cisacyber
@cisacyber
on x
🚨 Cyber threat actors are exploiting newly identified zero-day vulnerabilities in Cisco Adaptive Security Appliances via web services, posing significant risk. Federal agencies must act immediately and follow the guidance in Emergency Directive 25-03. 🔗 https://go.dhs.gov/iAK [im…
-
@asdgovau
@asdgovau
on x
❗ALERT❗ We are aware of multiple vulnerabilities impacting Cisco ASA 5500-X Series models. Affected organisations should investigate environments for potential malicious activity and consult Cisco for guidance and mitigation advice. Read the full alert 👉 https://www.cyber.gov.au/…
-
@malwarejake
Jake Williams
on x
Heads up: There's a critical vulnerability in Cisco ASA and FTD products that can lead to arbitrary code execution. Unlike many network device vulns that require access to an admin console, this just requires SSL VPN to be enabled on the device. https://sec.cloudapps.cisco.com/ .…
-
@cisagov
@cisagov
on x
🚨NEW: we issued Emergency Directive 25-03 to address critical vulnerabilities found in Cisco Adaptive Security Appliances & Cisco Firepower Threat Defense devices. Federal agencies must act now, and we urge all orgs to follow the recommended actions: https://go.dhs.gov/iAK [image…
-
@ddimolfetta
David DiMolfetta
on bluesky
Update: an industry source tells me the hacking group responsible for this activity is likely tied to China. A CISA official said earlier the agency is not focused at the moment on attribution. The high chance that this is China probably wouldn't surprise many. [embedded post]