一个与政府有联系的团体利用自2025年5月以来Cisco防火墙的缺陷,造成断电或远程访问;立即补丁。 A government-linked group exploits Cisco firewall flaws since May 2025, causing outages or remote access; patch immediately.

Cisco警告说,至少自2025年5月以来,至少从2025年5月起,将针对其安全ASA和FTD防火墙的新的攻击变种作为攻击目标,利用CVE-2025-20333和CVE-2025-20362的脆弱性,导致拒绝服务或远程代码执行。 Cisco warns of a new attack variant targeting its Secure ASA and FTD firewalls since at least May 2025, exploiting vulnerabilities CVE-2025-20333 and CVE-2025-20362 to cause denial-of-service or remote code execution. 这些袭击与政府支持的与ArcaneDoor运动有联系的团体有关,使用了先进的逃避战术和持续的恶意软件。 The attacks, linked to a government-backed group tied to the ArcaneDoor campaign, use advanced evasion tactics and persistent malware. 还披露了UCCX软件的另外两个严重缺陷,但尚未加以积极利用。 Two additional critical flaws in UCCX software were also disclosed, though not yet actively exploited. Cisco与CISA和英国的NCSC合作,敦促立即补丁,以防止妥协。 Cisco, working with CISA and the UK’s NCSC, urges immediate patching to prevent compromise.