Chinese Hackers Target US Local Governments by Exploiting Cityworks 0-DayChinese Hackers Target US Local Governments by Exploiting Cityworks Zero-Day Vulnerability
Cisco Talos has issued a warning regarding active exploitation of a zero-day vulnerability (CVE-2025-0994) in Cityworks, allegedly by the Chinese-speaking threat group UAT-6382. This article provides an overview of the malware involved, the organizations at risk, and essential security measures. Cisco Talos has raised an alarm about targeted cyberattacks focusing…