Home Security
PC Matic
PC Matic VPN
More Products
Support Unlimited
Identity Theft Protection
PC Magnum
Threat Awareness
How PC Matic Protects You
SuperShield Whitelist
Compare PC Matic
Norton
McAfee
Avast
AVG
Business Protection
PC Matic Pro
PC Matic MSP
Solutions
Allowlisting
Script Enforcement
Device Control
Patch Management
Remote Tools
Integrations
Server Security
Learn More
Resellers
Affiliates
Resources
Case Studies
Compare PC Matic Pro
ThreatLocker
Airlock Digital
VMware Carbon Black
AppLocker
For Federal
Partner Programs
Managed Service Providers
Channel Partners
Affiliate Partners
OEM Partners
Resource Center
All Resources
Case Studies
Data Sheets
User Guides
White Papers
Blog Resources
PC Matic Blog
Business Security
Home Security
Cyber News
Scam Alerts
Customer Service
Home Support
Business Support
Learn More
Getting Started
Knowledgebase
Tech Support Scams
Fake Virus Scams
Tools & More
Ransomware Center
Internet Speed Test
PC Matic
About
Careers
Learn More
Industry Recognition
Leadership
Commercials
Stay Up-to-Date
Newsroom
Blog
Events
TechTalk Podcast
Home Customers
My Account
PC Matic App
Add a Device
Renew Subscription
Business Customers
Business Login
Business Support
Search

Ransomware Threat Alert: Urgent Patching Needed for Cisco ASA SSL VPN Vulnerabilities

Security researcher Kevin Beaumont is warning about the efforts of ransomware groups Akira and Lockbit to exploit older vulnerabilities in Cisco ASA SSL VPN devices.

These groups target vulnerabilities for which patches have been available since 2020 and 2023. Beaumont emphasizes the importance for administrators to upgrade to the latest ASA release, particularly on devices with the AnyConnect SSL VPN feature enabled on their internet-exposed interfaces.

These vulnerabilities pose a significant threat as Cisco ASA devices are commonly deployed across organizations and are frequently targeted by attackers, including ransomware groups, through various means, such as unpatched vulnerabilities, credential stuffing, and brute-force attacks.

Enjoy true online freedom with PC Matic VPN. Hide your online activity, secure your connection, and access region-blocked content from anywhere.

Additionally, users benefit from anti-ransomware and malware protection, dark web monitoring, safe web browsing, USA-based phone support, identity theft protection, and more.

Attackers are developing exploits or purchasing them as proof-of-concept exploits for patched vulnerabilities continue to surface. For instance, there are suspicions of Akira exploiting CVE-2020-3259 without a known public exploit.

Despite some vulnerabilities like CVE-2020-3580 being exploited in the past, ransomware groups are banking on organizations’ slow patching processes. There has been a notable increase in scanning for Cisco AnyConnect VPN devices, with most scanning IPs identified as malicious. This surge in scanning activity correlates with previous exploitation campaigns, such as CitrixBleed. Beaumont’s warning is clear: organizations must prioritize patching to mitigate the risk of falling victim to ransomware attacks.

PC Matic delivers complete home and business cybersecurity protection against ransomware, malware, identity theft, online tracking, data breaches, and more. For over 20 years, PC Matic’s award-winning cyber protection has saved millions of satisfied customers from becoming the next cybercrime victim and is exclusively made in the USA.
Learn more about PC Matic today!
pcmatic.com
[email protected]

Stop Responding to Threats.
Prevent Them.

Get Protected

Want to get monthly tips & tricks?

Subscribe to our newsletter to get cybersecurity tips & tricks and stay up to date with the constantly evolving world of cybersecurity.

Related Articles