Network World

Cisco finally patches seven-week-old zero-day flaw in Secure Email Gateway products

Chinese hackers are behind attacks on AsyncOS Software that allow complete takeover of the appliance, company says.

Cisco finally fixes AsyncOS zero-day exploited since November

Cisco finally patched a maximum-severity AsyncOS zero-day exploited in attacks targeting Secure Email Gateway (SEG) ...
The Hacker News

Cisco Patches Zero-Day RCE Exploited by China-Linked APT in Secure Email Gateways

Cisco released fixes for CVE-2025-20393, a CVSS 10.0 zero-day RCE flaw in AsyncOS exploited by a China-linked APT via email ...
SecurityWeek

Cisco Patches Vulnerability Exploited by Chinese Hackers

Cisco patched an Email Gateway and Secure Email zero-day exploited by Chinese hackers to deploy the AquaShell backdoor.
Bleeping Computer

Latest Secure Email Gateway news

Cisco warned customers today of an unpatched, maximum-severity Cisco AsyncOS zero-day actively exploited in attacks targeting Secure Email Gateway (SEG) and Secure Email and Web Manager (SEWM) ...
Forbes

Cisco Secure Email Attacks: 0-Day Exploit Confirmed, No Fix Available

“There are no workarounds identified that directly mitigate the risk concerning this attack campaign,” is not what you want to read, having just been informed of a zero-day exploit concerning a Common ...
Network World

Cisco confirms zero-day exploitation of Secure Email products

The unpatched flaw affects AsyncOS-based Secure Email appliances, with Cisco investigating scope and urging rebuilds in confirmed compromise cases. Cisco has warned that a China-linked hacking group ...