https://mikedent.io/tags/ftd/Recent content in FTD on Thoughts and Ramblings by MikeHugo -- gohugo.ioenMike DentThu, 25 Apr 2024 00:00:00 +0000https://mikedent.io/post/2024/04/zero-day-threat-cisco-remote-access-on-asa-ftd/Thu, 25 Apr 2024 00:00:00 +0000https://mikedent.io/post/2024/04/zero-day-threat-cisco-remote-access-on-asa-ftd/ <p>Cisco recently patched two critical vulnerabilities in their firewall products, discovered after probable nation-state actors targeted them in a campaign dubbed &quot;Arcane Door&quot;. These zero-day vulnerabilities, found in devices running ASA and FTD software, were exploited to implant malware and possibly steal data. Cisco released three patches and has tracked the hacking group under UAT4356 and STORM-1849 by Microsoft. These flaws, involving HTTP header parsing and a legacy VPN client preloading capability, allowed attackers root-level access, emphasizing the need for immediate patching and security upgrades.</p>