Mastodawn

Firestarter Malware Evades Cisco Firewall Updates, Persists Across Reboots

A custom backdoor called Firestarter has been discovered evading Cisco firewall updates and persisting across reboots, posing a significant threat to cybersecurity. This sophisticated malware is attributed to a threat actor linked to cyberespionage campaigns, including the notorious ArcaneDoor operation.

https://osintsights.com/firestarter-malware-evades-cisco-firewall-updates-persists-across-reboots?utm_source=mastodon&utm_medium=social

#FirestarterMalware #CiscoFirewall #Uat4356 #Arcanedoor #Cyberespionage

Firestarter Malware Evades Cisco Firewall Updates, Persists Across Reboots

Learn how Firestarter malware evades Cisco firewall updates and persists across reboots. Discover the threat actor behind it and protect your devices now with expert security tips.

OSINTSights

Censys May 1, 2024

Censys Researchers investigated the threat actor infrastructure behind the #ArcaneDoor campaign, led by previously unknown state-sponsored threat actor #UAT4356, and found networks, certificate indicators, and software hinting at potential ties to China. https://censys.com/analysis-of-arcanedoor-threat-infrastructure-suggests-potential-ties-to-chinese-based-actor/ #CensysResearch

Analysis of ArcaneDoor Threat Infrastructure Suggests Potential Ties to Chinese-based Actor

Censys