Citrix and Cisco ISE Zero-Days Exploited by Advanced Threat Actor

Critical vulnerabilities Citrix Bleed 2 (CVE-2025-5777) in NetScaler ADC/Gateway and CVE-2025-20337 in Cisco ISE exploited as zero-days to deploy custom malware. Cisco flaw allows unauthenticated attackers to gain root privileges. This incident highlights the evolving threat landscape and the sophisticated tactics employed by modern threat actors. Organizations should review their security posture, ensure all systems are patched, implement defense-in-depth strategies, and monitor for indicators of compromise. Source: BleepingComputer