Cisco email security products are actively targeted in the zero-day campaign
Cisco Confirms Zero-Day (CVE-2025-20393) in Secure Email Appliances Exploited by China-Affiliated Actors Attackers implemented Aquashell backdoor, tunneling tools, and log-clearing tools for persistence CISA added errors to KEV; agencies must remedy/cease use by December 24 A China-affiliated threat actor has exploited a zero-day vulnerability in multiple Cisco email appliances to gain access to the underlying […]
Cisco email security products are actively targeted in the zero-day campaign Read More »









