Deception Technology: Indispensable Defense For Detecting Critical Cisco Asa/Ftd Exploitation
Zscaler, September 30,2025
Many cyber teams around the globe had a tough weekend dealing with the actively exploited Cisco ASA/FTD vulnerabilities, CVE-2025-20333 and CVE-2025-20362.
These bugs, particularly impacting web-based authentication, have been deemed significant enough for CISA to issue a directive (ED-25-03), urging organizations to identify and mitigate potential compromises. Discoveries like these highlight the urgent need for proactive defense strategies.
Zscaler's security research division, ThreatLabz, has been actively analyzing the critical Cisco ASA/FTD vulnerabilities (CVE-2025-20333 and CVE-2025-20362) and published a blog that includes strong recommendations that organizations deploy active defenses, specifically leveraging deception technology with decoys.