Priya PatelTLDR:
– CISA warns of an actively exploited vulnerability in Cisco ASA and FTD devices (CVE-2020-3259) used by the Akira Ransomware group.
– The vulnerability allows attackers to extract sensitive information from affected devices, such as usernames and passwords.
– The Akira ransomware group has been active since March 2023 and has targeted multiple organizations in various industries.
– Private organizations are advised to review and address vulnerabilities listed in CISA’s Known Exploited Vulnerabilities catalog to protect against attacks.
Article Summary:
CISA recently added a critical vulnerability (CVE-2020-3259) in Cisco ASA and FTD devices to its Known Exploited Vulnerabilities catalog. This vulnerability has been actively exploited by the Akira Ransomware group, allowing attackers to extract sensitive information like usernames and passwords. The Akira ransomware group has been active since March 2023 and has targeted organizations in various industries. Private organizations are advised to review and address vulnerabilities listed in CISA’s catalog to protect against similar attacks.
