Threat Advisories

Akira Ransomware Exploits Cisco Zero-Day Vulnerability

September 12, 2023

Threat Level

Vulnerability Report

For a detailed threat advisory, download the pdf file here

Summary

The zero-day vulnerability, identified as CVE-2023-20269, is a concerning security issue that impacts the remote access VPN feature of Cisco ASA (Adaptive Security Appliance) and FTD (Firepower Threat Defense). This remotely exploitable vulnerability, susceptible to brute force authentication, has been utilized by Akira Ransomware threat actors.

To receive real-time threat advisories, please follow HiveForce Labs on LinkedIn.

Nation-State Actors Infiltrate U.S. by Exploiting Zoho and Fortinet Flaws

Attacks, Vulnerabilities and Actors 4 September to 10 September 2023