Exploitation of Network Security Flaws by APT Actors

Timeline

1. 22.12.2025 14:00 1 articles · 23h ago

   Exploitation of Cisco and SonicWall Vulnerabilities by APT Groups

   Over the past week, threat actors have been exploiting critical vulnerabilities in Cisco's AsyncOS (CVE-2025-20393) and SonicWall's SMA 100 series appliances (CVE-2025-40602 and CVE-2025-23006) to achieve unauthenticated remote code execution. These exploits are being used to deliver malware and gain deeper access to targeted networks. The attacks highlight the increasing focus on network security products as entry points for broader network infiltration.

   Show sources

   • ⚡ Weekly Recap: Firewall Exploits, AI Data Theft, Android Hacks, APT Attacks, Insider Leaks & More — thehackernews.com — 22.12.2025 14:00

   Open in new tab

Information Snippets

• Cisco's AsyncOS flaw (CVE-2025-20393) is being exploited by the APT group UAT-9686 to deliver malware like ReverseSSH and AquaPurge.

  First reported: 22.12.2025 14:00
  1 source, 1 article
  Show sources

  • ⚡ Weekly Recap: Firewall Exploits, AI Data Theft, Android Hacks, APT Attacks, Insider Leaks & More — thehackernews.com — 22.12.2025 14:00

• SonicWall's SMA 100 series appliances are being targeted through a combination of vulnerabilities (CVE-2025-40602 and CVE-2025-23006) to achieve unauthenticated remote code execution.

  First reported: 22.12.2025 14:00
  1 source, 1 article
  Show sources

  • ⚡ Weekly Recap: Firewall Exploits, AI Data Theft, Android Hacks, APT Attacks, Insider Leaks & More — thehackernews.com — 22.12.2025 14:00

• The exploits are part of a broader trend where network security products are increasingly targeted by threat actors for deeper network infiltration.

  First reported: 22.12.2025 14:00
  1 source, 1 article
  Show sources

  • ⚡ Weekly Recap: Firewall Exploits, AI Data Theft, Android Hacks, APT Attacks, Insider Leaks & More — thehackernews.com — 22.12.2025 14:00