ArcaneDoor - Geek Feed

Firestarter malware survives Cisco firewall updates, security patches

April 27, 2026April 27, 2026 geekfeed0Tagged ArcaneDoor, Backdoor, CISA, cisco, Firestarter, Persistence

Cybersecurity agencies in the U.S. and U.K. are warning about a custom malware called Firestarter persisting on Cisco Firepower and Secure Firewall devices running Adaptive Security Appliance (ASA) or Firepower Threat Defense (FTD) software. The backdoor has been attributed to a threat actor that Cisco Talos tracks internally as UAT-4356, known for cyberespionage campaigns, including ArcaneDoor. […]

3 mins read

CISA orders agencies to patch Cisco flaws exploited in zero-day attacks

September 29, 2025September 29, 2025 geekfeed0Tagged 0day, Actively Exploited, ArcaneDoor, CISA, cisco, Cisco ASA, Cisco FTD, CVE-2025-20333, CVE-2025-20362, Emergency Directive, Firewall, Zero-Day

CISA has issued a new emergency directive ordering U.S. federal agencies to secure their Cisco firewall devices against two flaws that have been exploited in zero-day attacks. Emergency Directive 25-03 was issued to Federal Civilian Executive Branch (FCEB) agencies on September 25 and requires them to patch CVE-2025-20333 and CVE-2025-20362 vulnerabilities in Adaptive Security Appliance (ASA) and Firewall Threat […]

3 mins read