CISA: U.S. agency breached through Cisco vulnerability, FIRESTARTER backdoor allowed access through March

A U.S. agency was breached by sophisticated hackers in September through a vulnerability in Cisco firewalls.

The Cybersecurity and Infrastructure Security Agency (CISA) said the unnamed department was infected with malware called “FIRESTARTER” that allowed the hackers to return to the Cisco device in March without re-exploiting the original vulnerabilities.

CISA published an advisory on the FIRESTARTER malware and an updated directive ordering federal civilian agencies to take specific actions to check for infection. 

Read more at The Record