Chinese hackers have exploited a critical vulnerability in Cisco email management tools affecting appliances running AsyncOS Software. The threat group, linked to Chinese cyber espionage efforts, has used various tools to maintain access, prompting urgent mitigations from Cisco and the U.S. government. #CiscoVulnerability #UAT9686
Keypoints
- Cybercriminals have targeted Cisco appliances with the CVE-2025-20393 flaw since late November.
- The vulnerability affects devices with open internet-facing ports running AsyncOS Software for email security.
- There is no available patch yet, but Cisco recommends disabling exposed features and rebuilding compromised devices.
- The attack campaign is attributed to a Chinese threat group called UAT-9686, using tools like AquaShell.
- U.S. authorities have issued arrest warrants for Chinese nationals suspected of involvement in related cyber espionage activities.
Read More: https://therecord.media/chinese-attackers-zero-day