Hackers have launched a brute-force attack on Cisco ASA SSL VPNs. The attack targets various sectors including healthcare and oil and gas. Rapid7 has noted a surge in threats to Cisco ASA SSL VPN devices since March 2023. Weak passwords and lack of multi-factor authentication are often exploited by threat actors. Mitigations include disabling defaults, enforcing MFA, enabling logging, and staying updated with patches. The attack has been monitored and discussed by hackers on underground forums. The IOCs and IP addresses associated with the attack have been identified. #Cisco #CyberAttack #CyberSecurity #Vulnerability

https://cybersecuritynews.com/hackers-attacking-cisco-vpn-appliances/