Skip to main content
See every side of every news story
Get Started
SubscribeLogin
Published loading...Updated

New 'Firestarter' Malware Flames on in Spite of Cisco Firewall Updates and Security Patches

Cisco said the malware can survive reboots and firmware updates after attackers exploited two critical flaws to install persistent access on Firepower devices.

Summary by Tech Radar
Security pros are warning about custom malware targeting Cisco firewalls, and surviving upgrades and reboots.

7 Articles

Tech RadarTech Radar
Center

New 'Firestarter' malware flames on in spite of Cisco firewall updates and security patches

Security pros are warning about custom malware targeting Cisco firewalls, and surviving upgrades and reboots.

·United Kingdom
Read Full Article
Cybersecurity DiveCybersecurity Dive
Reposted by
IT Security News - cybersecurity, infosecurity newsIT Security News - cybersecurity, infosecurity news
Center

US, UK authorities warn that Firestarter backdoor malware survives patching

A federal agency was impacted by a hacking campaign that exploited flaws in Cisco devices.

Read Full Article
CSO OnlineCSO Online

Infected Cisco firewalls need cold start to clear persistent Firestarter backdoor

Security researchers have discovered a chilling backdoor aimed at Cisco System firewalls that exploits unpatched vulnerabilities to maintain persistence, even after patching. This means that attackers can continue to access compromised devices without re-exploiting the holes. At risk are devices running Cisco ASA or Firepower software, including certain Firepower and Secure Firewall devices. So far, however, the US Cybersecurity and Infrastructu…

Read Full Article
cybernoz.comcybernoz.com

‘Firestarter’ malware survives Cisco firewall patches

Cisco has confirmed that the ArcaneDoor threat actor deployed a persistence mechanism that isn’t handled by the security patches released by the company in September last year, affecting the operating system in a range of Firepower and Secure Firewall protective devices. Named Firestarter by the United States Cybersecurity and Infrastructure Security Agency (CISA) and Britain’s National Cyber Security Centre (NCSC), the malware implant is a Lin…

Read Full Article
iTnewsiTnews

'Firestarter' malware survives Cisco firewall patches

Pull mains plug on firewalls to kill the malware, CISA advises.

Read Full Article
it-daily.netit-daily.net

Cisco Firewalls: Malware Firestarter

CISA and NCSC warn against the APT malware FIRESTARTER. The backdoor is deeply embedded in Cisco systems and even survives patches. In a joint action, the U.S. agency CISA and the British National Cyber Security Centre (NCSC-UK) have published details of a highly specialized backdoor that operates under the name FIRESTARTER. All About Security reported. This malware targets publicly accessible edge devices from Cisco, especially Firepower and Se…

Read Full Article
Think freely.Subscribe and get full access to Ground NewsSubscriptions start at $9.99/yearSubscribe

Bias Distribution

  • 100% of the sources are Center
100% Center

Factuality Info Icon

To view factuality data please Upgrade to Premium

Ownership

Info Icon

To view ownership data please Upgrade to Vantage

it-daily.net broke the news on Monday, April 27, 2026.
Too Big Arrow Icon
Sources are mostly out of (0)

Similar News Topics

CISA icon

CISA

Cyberattacks icon

Cyberattacks

Cisco icon

Cisco

United States icon

United States

Cybersecurity icon

Cybersecurity

News
Feed Dots Icon
For You
Search Icon
SearchBlindspot LogoBlindspotLocal