https://cybersecpro.me/tags/detection-engineering/Recent content in Detection-Engineering on Juan Carlos MuneraHugo -- gohugo.ioen© 2026 Juan Carlos MuneraTue, 28 Apr 2026 00:00:00 +0000https://cybersecpro.me/posts/firestarter-cisco-backdoor-detection-gap/Tue, 28 Apr 2026 00:00:00 +0000https://cybersecpro.me/posts/firestarter-cisco-backdoor-detection-gap/On April 23, 2026, CISA and the UK NCSC published a malware analysis report on FIRESTARTER, a custom backdoor that survives patching, reboots, and firmware upgrades on Cisco Firepower and Secure Firewall devices. The federal directive itself states that Sigma rules are not effective against it. That admission has implications well beyond the federal civilian executive branch.