Cisco VPN in ASA and FTD unpatched vulnerability exploited in ransomware group attacks

Cisco has identified a critical zero-day vulnerability, tracked as CVE-2023-20269, in its Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD) software, which has been actively exploited by the Akira ransomware group since August. It can be remotely exploited via brute force attacks, prompting Cisco to work on security updates and share indicators of compromise (IoCs) and recommending mitigation measures.