Thousands of Cisco ASA Firewalls Still Unsecured Despite Federal Warnings

 Despite repeated warnings from Cisco and multiple cybersecurity agencies, an estimated 48,000 Cisco Adaptive Security Appliances (ASA) and Firepower Threat Defense (FTD) devices remain exposed to active exploitation. Most are located in the U.S., followed by the U.K., Japan, Russia, Germany, and Canada, according to data from the Shadowserver Foundation, which continues to scan for vulnerable devices daily.

The Cybersecurity and Infrastructure Security Agency (CISA) issued a warning and Emergency Directive 25-03 on September 26, 2025, citing evidence that an advanced threat actor is exploiting zero-day vulnerabilities in Cisco ASA appliances. The directive urges federal agencies—and strongly advises private organizations—to identify affected devices, collect forensic data, and update to secure releases immediately.

Background: Attacks Began Months Before Public Disclosure

In May 2025, Cisco was enlisted by government cybersecurity agencies to investigate targeted attacks against networks using Cisco ASA 5500-X Series devices.

Cisco confirmed that attackers had exploited multiple zero-day vulnerabilities, using advanced evasion tactics such as disabling logging, intercepting CLI commands, and intentionally crashing devices to obstruct forensic analysis. The methods and malware observed matched those seen in the ArcaneDoor campaign, believed to involve a state-sponsored threat actor.

https://enfortra.com/thousands-of-cisco-asa-firewalls-still-unsecured-despite-federal-warnings/

Comments

Post a Comment

Popular posts from this blog

Business fraud Protection a requirement to remain Secure Online

  Identity robbery may be a first-rate situation and zip seems worse than losing your identity and every one your economic facts. within the web global, identities can easily be stolen, abused and wont to such volume that your profession, financial capability, and personal relationships could also be broken. fraud can show up to all or any folks . The worst part is, it's ready to occur discreetly, without you understanding that your identification has already been stolen. within the web world, it is possible that an individual is residing the utilization of your identity .   There are several ways on how you'll protect your identification on line and display your credit report on a standard foundation . Business fraud protection are very discreet when stealing identities and credits hence the necessity to repeatedly maintain an eye fixed to your credit records and credit score reports. Read on to seek out out approaches on how you'll shield your identification:  ...
Read more

Safeguarding Businesses in the Digital Age

  The Rising Need for Cybersecurity In an era where data is a cornerstone of business success, protecting sensitive information has never been more critical. Identity Protection Solution For Businesses offers a robust framework to shield companies from the growing threat of cyberattacks. As organizations increasingly rely on digital platforms to manage operations, customer interactions, and financial transactions, the risk of identity theft and data breaches escalates. These threats can lead to significant financial losses, reputational damage, and legal repercussions. By implementing comprehensive security measures, businesses can safeguard their assets and maintain trust with clients and partners, ensuring resilience in a rapidly evolving digital landscape. Understanding Identity Protection Solutions The essence of an Identity Protection Solution For Businesses lies in its ability to secure sensitive data and prevent unauthorized access. These solutions encompass a range of...
Read more

How Identity Protection Solutions Safeguard Businesses from Cyber Threats

  In today's digital landscape, businesses face increasing threats from cybercriminals who exploit vulnerabilities to gain unauthorized access to sensitive information. An effective identity protection solution for businesses is no longer a luxury but a necessity. Organizations must implement advanced security measures to safeguard customer data, employee records, and proprietary information. With cyberattacks evolving in complexity, breach detection services play a crucial role in identifying potential threats before they cause irreparable damage. Cyber threats have significantly escalated in recent years, affecting companies of all sizes and industries. Data breaches, phishing attacks, and identity theft can lead to severe financial losses and reputational damage. Without a proactive approach to cybersecurity, businesses remain at risk of falling victim to these attacks. A comprehensive identity protection solution for businesses includes real-time monitoring, risk assessment,...
Read more