A sophisticated backdoor malware named Firestarter has been detected targeting a US federal agency, prompting a high alert from CISA and its UK counterparts. The malware, which targets Cisco Secure Firewall devices, is notable for its ability to maintain persistent access even after system updates. While attributed to a government-backed group tracked as UAT-4356, its specific nation-state origin remains undisclosed, though it is suspected to be part of a broader campaign against critical infrastructure. AI
Summary written by gemini-2.5-flash-lite from 1 source. How we write summaries →
RANK_REASON This is a report of a specific malware discovery and its technical details, rather than a major AI model release or policy shift.
