Cisco finally confirms attackers exploiting Unified CM flaw
Cisco confirmed that attackers are now exploiting a Unified Communications Manager (Unified CM) vulnerability patched in early June. […]
Cisco confirmed that attackers are now exploiting a Unified Communications Manager (Unified CM) vulnerability patched in early June. […]
A PoC exploit has been available since public disclosure, and the first exploitation attempts were observed last week. The post Cisco Confirms In-the-Wild Exploitation of Unified CM Vulnerability appeared first on SecurityWeek.
Cisco joins a growing list of security platform providers who are betting that securing the agentic workforce means turning identity into the primary control plane.
Cisco schließt eine aktiv ausgenutzte Schwachstelle im Catalyst SD-WAN Manager. Ein authentifizierter Angreifer kann über die Web-Oberfläche beliebige Dateien auf das System schreiben und seine Rechte bis zur Root-Ebene anheben. CISA hat die Schwachstelle CVE-2026-20262 in den KEV-Katalog aufgenommen, Patches stehen bereit, Behelfslösungen fehlen jedoch.
Angriffe auf Cisco Unified CM beobachtetAlertheise Security Quelle: Heise Security Ticker
CVE-2026-20245, the 7th Cisco SD-WAN vulnerability exploited in 2026, was used for months prior to its disclosure and patching. The post Cisco SD-WAN Zero-Day Exploited Months Before Patching appeared first on SecurityWeek.
New details have been revealed on how hackers exploited a Cisco Catalyst SD-WAN vulnerability tracked as CVE-2026-20245 in zero-day attacks to create rogue root accounts on targeted devices. […]
Researchers believe rogue peering was used to connect to the victim’s SD-WAN devices to gain admin privileges and root-level access.
Kickbacks, no-show jobs, "dirty" VCs, and shelf ware — industry expert Robert "RSnake" Hansen explains why he thinks its time for a CISO code of ethics to ensure cybersecurity bosses aren’t engaged in self-dealing that could risk enterprise, and even national, security.