Cisco Zero-Day Hits Email Security, Kali 2025.4

A new report highlights how a Cisco zero-day hits email security appliances, raising fresh concerns for enterprise infrastructure. Security researchers observed the vulnerability being actively exploited in the wild, driving urgent patching efforts. The flaw, now identified as CVE-2025-40602, is just one of several disclosed issues named in the report. Other notable vulnerabilities include CVE-2025-43529 and CVE-2025-20393, underscoring the week’s heightened threat landscape.

In contrast to these threats, cybersecurity professionals also welcomed the release of Kali Linux 2025.4. The latest version of the popular penetration testing distribution brings updated tools and enhanced support for new hardware. Designed for ethical hackers and security analysts, the release continues to strengthen proactive defense capabilities.

The report also explores how AI agents are being trained to seek user permission more responsibly, reflecting ongoing trends in responsible automation.

To get a deeper look at how the Cisco zero-day hits email systems and other developments, read the full article below.

Week in review: Exploited zero-day in Cisco email security appliances, Kali Linux 2025.4 released