September 18, 2023
The Akira ransomware group has been actively exploiting a zero-day vulnerability found in Cisco’s Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD) software since at least August. This vulnerability, identified as CVE-2023-20269, stems from the improper separation of authentication, authorization, and accounting (AAA) functions between remote access VPN and HTTPS management features, as well as site-to-site VPN features. Cisco has urged customers to upgrade to a fixed software release when available and apply recommended ...
Continue Reading →SEP