Cisco has warned of new cyberattacks targeting its Secure Firewall Adaptive Security Appliance (ASA) and Secure Firewall Threat Defense (FTD) software, exploiting critical vulnerabilities CVE-2025-20333 and CVE-2025-20362. These attacks, first detected in early November 2025, cause unpatched firewalls to continuously reload, leading to denial-of-service conditions. The cyberespionage group behind these exploits, known as UAT4356 or Storm-1849, has been leveraging these vulnerabilities since mid-2025, particularly targeting government and large enterprises worldwide. Meanwhile, Cisco has issued urgent patches for two critical flaws in its Unified Contact Center Express (UCCX) software, which could allow remote attackers to bypass authentication and execute commands with root privileges. Cisco urges all users to promptly apply these updates to prevent further exploitation. This complex wave of attacks highlights persistent cybersecurity threats to critical infrastructure and underscores the need for immediate patch management and robust defenses.