> TritonInfoSec News
Home / Apr 26, 2026 / Story
0
#1 The Hacker News general April 24, 2026 at 17:06 UTC

FIRESTARTER Backdoor Hit Federal Cisco Firepower Device, Survives Security Patches

By [email protected] (The Hacker News)

AI Summary

CISA revealed that a federal civilian agency's Cisco Firepower device running ASA software was compromised in September 2025 with FIRESTARTER backdoor malware. The backdoor provides remote access and maintains persistence even after security patches are applied, demonstrating advanced evasion capabilities against enterprise security infrastructure.

Read full article → https://thehackernews.com/2026/04/firestarter-back…

Relevance score: 95.0/100

# More from April 26

  1. 2
    Researchers Uncover Pre-Stuxnet ‘fast16’ Malware Targeting Engineering Software The Hacker News
  2. 3
    CISA Adds 4 Exploited Flaws to KEV, Sets May 2026 Federal Deadline The Hacker News
  3. 4
    China-Linked APT GopherWhisper Abuses Legitimate Services in Government Attacks SecurityWeek
  4. 5
    Threat actor uses Microsoft Teams to deploy new “Snow” malware BleepingComputer
  5. 6
    New BlackFile extortion group linked to surge of vishing attacks BleepingComputer
  6. 7
    Toronto police arrest three in Canada’s first mobile SMS blaster case The Record
  7. 8
    North Korea's Lazarus Targets macOS Users via ClickFix Dark Reading
  8. 9
    US Busts Myanmar Ring Targeting US Citizens in Financial Fraud Dark Reading
  9. 10
    ADT says customer data stolen in cyber intrusion The Record