Network World

Cisco finally patches seven-week-old zero-day flaw in Secure Email Gateway products

Chinese hackers are behind attacks on AsyncOS Software that allow complete takeover of the appliance, company says.
The Hacker News

Cisco Patches Zero-Day RCE Exploited by China-Linked APT in Secure Email Gateways

Cisco released fixes for CVE-2025-20393, a CVSS 10.0 zero-day RCE flaw in AsyncOS exploited by a China-linked APT via email ...

Cisco finally fixes AsyncOS zero-day exploited since November

Cisco finally patched a maximum-severity AsyncOS zero-day exploited in attacks targeting Secure Email Gateway (SEG) ...
Forbes

Cisco Secure Email Attacks: 0-Day Exploit Confirmed, No Fix Available

“There are no workarounds identified that directly mitigate the risk concerning this attack campaign,” is not what you want to read, having just been informed of a zero-day exploit concerning a Common ...
Bleeping Computer

Latest Secure Email Gateway news

Cisco warned customers today of an unpatched, maximum-severity Cisco AsyncOS zero-day actively exploited in attacks targeting Secure Email Gateway (SEG) and Secure Email and Web Manager (SEWM) ...
SecurityWeek

Cisco Patches Vulnerability Exploited by Chinese Hackers

Cisco patched an Email Gateway and Secure Email zero-day exploited by Chinese hackers to deploy the AquaShell backdoor.
Dark Reading

Threat Actors Ramp Up Use of Encoded URLs to Bypass Secure Email

Secure email gateways (SEG) do a lot to protect organizations from malware, spam, and phishing email. For some threat actors though, they also offer an attractive option for sneaking malicious mail ...
Hosted on MSN

Cisco warns Chinese hackers exploit critical email gateway flaw

Cisco customers are dealing with a double whammy of security threats this week, as Chinese state-sponsored hackers exploit a critical zero-day vulnerability in email security products while separate ...