Vulnerabilities Observed in Exploit Campaign Affecting Cisco ASA and FTD Software
Health-ISAC is distributing this bulletin to increase your situational awareness.
On April 24, 2024, Cisco released security advisories regarding the abuse of vulnerabilities
(CVE-2024-20353 and CVE-2024-20359) identified in campaigns targeting Cisco Adaptive Security
Appliance (ASA) and Firepower Threat Defense (FTD) software. The malicious activity, dubbed
ArcaneDoor, is an operation enacted by state-sponsored threat actors targeting perimeter network devices
from multiple vendors. The threat actors intentions behind the operation are likely to pivot into
organizations, reroute or modify traffic, and monitor network communications after exploiting affected
perimeter network devices.
- Related Resources & News
- Leveraging ISO 81001-5-1 Amid Medical Device Procurement
- Mitigating risk as healthcare supply chain attacks prevail
- Enhancing Cybersecurity in Rural Hospitals
- Health-ISAC Hacking Healthcare 11-15-2024
- Cyber Incident Response: Playbook for Medical Product Makers
- Feds Warn of Godzilla Webshell Threats to Health Sector
- Trump’s Return: Impact on Health Sector Cyber, HIPAA Regs
- Health-ISAC Hacking Healthcare 11-7-2024
- Protecting the Healthcare Supply Chain Against Russian Ransomware Attacks
- All hospitals should be concerned about cyberattacks. Here’s why