Cisco ASA

Google’s Threat Intelligence Group (GTIG) tracked 90 zero-day vulnerabilities exploited in the wild in 2025, with 43 of them — nearly half — targeting enterprise networking and security infrastructure. This represents an all-time high for enterprise-focused zero-days and a clear signal that the devices network engineers manage daily are now the primary attack surface. Key Takeaway: Network appliances like firewalls, VPN concentrators, and SD-WAN controllers have replaced endpoints as the top zero-day target. If you manage Cisco ASA, FTD, or any edge device, this report is your wake-up call. ...

Cisco dropped one of its largest security patch bundles in recent memory on March 4, 2026 — 25 advisories covering 48 vulnerabilities across Secure Firewall ASA, Secure FTD, and Secure FMC. Two of those flaws score a perfect CVSS 10.0. If you’re studying for CCIE Security, these are the exact platforms you’ll face on exam day, and understanding how they break is just as important as knowing how to configure them. ...

Every CCIE Security v6.1 candidate hits the same question early in their prep: do I master ASA first, or dive straight into FTD? Reddit threads are full of conflicting advice. Some candidates say FTD dominates the lab. Others insist ASA fundamentals are non-negotiable. The truth — as usual — is more nuanced than either camp admits. I’ve spent significant time dissecting the v6.1 blueprint, lab reports from recent candidates, and the actual platform behaviors you’ll encounter under exam pressure. Here’s the definitive breakdown. ...