ArcaneDoor - APT Group Profile
Type: APT Group
Frequency: Mentioned 16 times
Threat actor profile for ArcaneDoor. Activity tracked across 8 threat clusters.
Related Threat Clusters
- Persistent Firestarter Malware Targets Cisco Firepower Devices in US Agencies (Threat Score: 79.0)
- Exploitation of Remote Services in Cyber Attacks (Threat Score: 75.0)
- Cisco ASA Zero-Day Exploited in State-Espionage Campaign (Threat Score: 50.0)
- Cisco Faces Multiple Critical Vulnerabilities in Unified CCX and Firewalls (Threat Score: 40.1)
- Cisco Warns of New Attack Variant Targeting Firewalls (Threat Score: 39.8)
- APT Groups BITTER and ArcaneDoor Target Enterprises with Cyber Attacks (Threat Score: 34.9)
- Cisco Firewalls Targeted by New Attack Variant Exploiting Critical Vulnerabilities (Threat Score: 31.3)
- ATT&CK v19 Release Introduces Major Changes in Defense Evasion Tactics (Threat Score: 27.9)
Recent Articles
- External Remote Services - attack.mitre.org
- T1685: Disable or Modify Tools - attack.mitre.org
- Hackers Exploiting Cisco Firepower Devices’ Using n - Cybersecuritynews
- Firestarter malware survives Cisco firewall updates, security patches - Bleepingcomputer
- US, UK agencies warn hackers were hiding on Cisco firewalls long after patches were applied - Cyberscoop
- UAT-4356's Targeting of Cisco Firepower Devices - Blog.Talosintelligence
- ArcaneDoor Attack (Cisco ASA Zero-Day) - Filestore.Fortinet
- Cisco ASA firewalls still under attack; CISA issues guidance for patch - Scmagazine
- CISA warns feds to fully patch actively exploited Cisco flaws - Bleepingcomputer
- NSFOCUS Monthly APT Insights – September 2025 - Securityboulevard