Firestarter malware survives Cisco firewall updates, security patches

Cybersecurity agencies in the U.S. and U.K. are warning about a custom malware called Firestarter persisting on Cisco ...
Network World

Infected Cisco firewalls need cold start to clear persistent Firestarter backdoor

Admins are being warned by cyber experts from the US and UK that this is part of continuing campaign to crack Cisco firewalls ...
Security Boulevard

Tropic Trooper Pivots to AdaptixC2 and Custom Beacon Listener

IntroductionOn March 12, 2026, Zscaler ThreatLabz discovered a malicious ZIP archive containing military-themed document lures targeting Chinese-speaking individuals. Our analysis of this sample ...

'Firestarter' malware survives Cisco firewall patches

Cisco has confirmed that the ArcaneDoor threat actor deployed a persistence mechanism that isn't handled by the security ...
The Hacker News

Tropic Trooper Uses Trojanized SumatraPDF and GitHub to Deploy AdaptixC2

Tropic Trooper used trojanized SumatraPDF and GitHub C2 in 2024 to deploy AdaptixC2, enabling covert VS Code tunnel access.
The Hacker News

FIRESTARTER Backdoor Hit Federal Cisco Firepower Device, Survives Security Patches

FIRESTARTER backdoor hit Cisco ASA in Sept 2025, persists after patching CVE-2025-20333, risking continued federal network ...

New 'Firestarter' malware flames on in spite of Cisco firewall updates and security patches

Security pros are warning about custom malware targeting Cisco firewalls, and surviving upgrades and reboots.
Hosted on MSN

Firestarter malware exploits Cisco flaws, hits federal agency

Cisco Talos has identified 'Firestarter', a persistent malware targeting unpatched Cisco Firepower and Secure Firewall devices. The UAT‑4356 group exploited two newly disclosed vulnerabilities before ...
DMR News

CISA Warns FIRESTARTER Malware Persists On Cisco Devices After Patching In Federal Network Breach

The Cybersecurity and Infrastructure Security Agency has disclosed that a U.S. federal civilian agency was compromised by ...