Cisco

New ClamAV security patch closes seven scanner bugs dating back two decades

New ClamAV security patch closes seven scanner bugs dating back two decades 2026-07-06 at 01:30 By Sinisa Markovic Open source antivirus scanning sits inside mail gateways, file upload checks, and endpoint tooling at organizations of every size. Much of that work runs through ClamAV, the scanning engine maintained by Cisco’s Talos group. The project released […]

New ClamAV security patch closes seven scanner bugs dating back two decades Read More »

The ARToken phishing panel targets Microsoft 365 accounts

The ARToken phishing panel targets Microsoft 365 accounts 2026-07-01 at 13:00 By Sinisa Markovic Accounts-payable staff at U.S. companies keep receiving invoice emails that look like they come from vendors they already work with. One landed at a life-sciences company in April 2026, addressed to the person who handles payments and written in the voice

The ARToken phishing panel targets Microsoft 365 accounts Read More »

Cisco SD-WAN Zero-Day Exploited Months Before Patching

Cisco SD-WAN Zero-Day Exploited Months Before Patching 2026-06-25 at 09:08 By Eduard Kovacs CVE-2026-20245, the 7th Cisco SD-WAN vulnerability exploited in 2026, was used for months prior to its disclosure and patching. The post Cisco SD-WAN Zero-Day Exploited Months Before Patching appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

Cisco SD-WAN Zero-Day Exploited Months Before Patching Read More »

Cisco Unified CM flaw actively exploited to drop webshells (CVE-2026-20230)

Cisco Unified CM flaw actively exploited to drop webshells (CVE-2026-20230) 2026-06-24 at 14:36 By Zeljka Zorz CVE-2026-20230, a server-side request forgery (SSRF) vulnerability affecting Cisco’s Unified Communications Manager (Unified CM), is being exploited to drop webshells and achieve remote code execution capability on the underlying server. “Our honeypots are seeing automated sweeps dropping webshells, all

Cisco Unified CM flaw actively exploited to drop webshells (CVE-2026-20230) Read More »

Hackers Exploiting Cisco Unified CM Vulnerability

Hackers Exploiting Cisco Unified CM Vulnerability 2026-06-24 at 08:44 By Eduard Kovacs Cisco noted that a PoC had been available for CVE-2026-20230 when it announced patches in early June. The post Hackers Exploiting Cisco Unified CM Vulnerability appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

Hackers Exploiting Cisco Unified CM Vulnerability Read More »

Cisco to Acquire WideField Security to Boost Splunk’s Agentic SOC

Cisco to Acquire WideField Security to Boost Splunk’s Agentic SOC 2026-06-19 at 10:22 By Eduard Kovacs WideField will accelerate Agentic SOC capabilities by expanding the lens on threat investigation to include identity, credentials, sessions, and blast radius. The post Cisco to Acquire WideField Security to Boost Splunk’s Agentic SOC appeared first on SecurityWeek. This article

Cisco to Acquire WideField Security to Boost Splunk’s Agentic SOC Read More »

Critical Command Execution Vulnerability Patched in Cisco ISE

Critical Command Execution Vulnerability Patched in Cisco ISE 2026-06-18 at 13:27 By Ionut Arghire Insufficient validation of user input allows an attacker to gain access to the underlying OS and elevate their privileges to root. The post Critical Command Execution Vulnerability Patched in Cisco ISE appeared first on SecurityWeek. This article is an excerpt from

Critical Command Execution Vulnerability Patched in Cisco ISE Read More »

Cisco discloses second exploited SD-WAN vulnerability in two weeks (CVE-2026-20262)

Cisco discloses second exploited SD-WAN vulnerability in two weeks (CVE-2026-20262) 2026-06-16 at 13:20 By Zeljka Zorz Cisco has revealed another Catalyst SD-WAN Manager vulnerability (CVE-2026-20262) that its Product Security Incident Response Team observed being exploited by attackers. But the associated security advisory also states that “the vulnerability was found during internal security testing”, raising the

Cisco discloses second exploited SD-WAN vulnerability in two weeks (CVE-2026-20262) Read More »

Cisco Patches Another SD-WAN Zero-Day Exploited in Attacks

Cisco Patches Another SD-WAN Zero-Day Exploited in Attacks 2026-06-16 at 09:20 By Eduard Kovacs Cisco recently became aware of the exploitation of CVE-2026-20262, a Catalyst SD-WAN Manager zero-day that allows arbitrary file write. The post Cisco Patches Another SD-WAN Zero-Day Exploited in Attacks appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View

Cisco Patches Another SD-WAN Zero-Day Exploited in Attacks Read More »

CISA orders federal agencies to “patch smarter”

CISA orders federal agencies to “patch smarter” 2026-06-11 at 20:18 By Zeljka Zorz The US Cybersecurity and Infrastructure Security Agency (CISA) has issued a Binding Operational Directive that will change how the US federal government approaches vulnerability management. The directive arrives as the patching problem has become nearly unmanageable, driven by a surge in newly

CISA orders federal agencies to “patch smarter” Read More »

Cisco SD-WAN 0-day exploited, no patch available (CVE-2026-20245)

Cisco SD-WAN 0-day exploited, no patch available (CVE-2026-20245) 2026-06-05 at 15:49 By Zeljka Zorz A 0-day privilege escalation vulnerability (CVE-2026-20245) in Cisco Catalyst SD-WAN Manager that has yet to be patched by Cisco is being leveraged by attackers. “To exploit this vulnerability, an attacker must have netadmin privileges on an affected system. This would require

Cisco SD-WAN 0-day exploited, no patch available (CVE-2026-20245) Read More »

Cisco Warns of 7th SD-WAN Zero-Day Exploited in 2026

Cisco Warns of 7th SD-WAN Zero-Day Exploited in 2026 2026-06-05 at 09:23 By Eduard Kovacs The vulnerability is tracked as CVE-2026-20245 and it can allow arbitrary command execution as root, but no patch yet. The post Cisco Warns of 7th SD-WAN Zero-Day Exploited in 2026 appeared first on SecurityWeek. This article is an excerpt from

Cisco Warns of 7th SD-WAN Zero-Day Exploited in 2026 Read More »

Cisco Warns of Available PoC for Critical Unified CM Vulnerability

Cisco Warns of Available PoC for Critical Unified CM Vulnerability 2026-06-04 at 13:16 By Ionut Arghire The high-severity flaw can be exploited remotely, without authentication, in server-side request forgery (SSRF) attacks. The post Cisco Warns of Available PoC for Critical Unified CM Vulnerability appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View

Cisco Warns of Available PoC for Critical Unified CM Vulnerability Read More »

Frontier AI models collapse under multi-turn AI attacks, Cisco finds

Frontier AI models collapse under multi-turn AI attacks, Cisco finds 2026-05-28 at 10:16 By Mirko Zorz Attackers who probe large language models rarely give up after one refusal. They reframe, build context across turns, adopt personas, and escalate gradually. New research from Cisco’s AI threat intelligence team finds that the safety benchmarks used across the

Frontier AI models collapse under multi-turn AI attacks, Cisco finds Read More »

Cisco refines its risk-based vulnerability disclosure for the AI era

Cisco refines its risk-based vulnerability disclosure for the AI era 2026-05-25 at 21:27 By Sinisa Markovic Security teams already struggle with long lists of vulnerabilities and limited time to patch them. Cisco believes AI could increase that pressure by accelerating vulnerability discovery and increasing the number of findings security teams need to review. The company

Cisco refines its risk-based vulnerability disclosure for the AI era Read More »

Cisco Patches Critical Vulnerability in Secure Workload

Cisco Patches Critical Vulnerability in Secure Workload 2026-05-21 at 15:24 By Ionut Arghire Insufficient validation and authentication in the Secure Workload’s REST APIs provide remote attackers with Site Admin privileges. The post Cisco Patches Critical Vulnerability in Secure Workload appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

Cisco Patches Critical Vulnerability in Secure Workload Read More »

Cisco patches another actively exploited SD-WAN zero-day (CVE-2026-20182)

Cisco patches another actively exploited SD-WAN zero-day (CVE-2026-20182) 2026-05-15 at 16:07 By Zeljka Zorz Cisco has patched yet another Catalyst SD-WAN Controller authentication bypass vulnerability (CVE-2026-20182) that has been exploited as a zero-day by “a highly sophisticated cyber threat actor”. About CVE-2026-20182 CVE-2026-20182 – affecting both Cisco Catalyst SD-WAN Controller (the “brain” of the Cisco

Cisco patches another actively exploited SD-WAN zero-day (CVE-2026-20182) Read More »

Cisco Patches Another SD-WAN Zero-Day, the Sixth Exploited in 2026

Cisco Patches Another SD-WAN Zero-Day, the Sixth Exploited in 2026 2026-05-15 at 10:16 By Eduard Kovacs The zero-day, tracked as CVE-2026-20182, has been exploited in targeted attacks by a sophisticated threat actor identified as UAT-8616. The post Cisco Patches Another SD-WAN Zero-Day, the Sixth Exploited in 2026 appeared first on SecurityWeek. This article is an

Cisco Patches Another SD-WAN Zero-Day, the Sixth Exploited in 2026 Read More »

Cisco Patches High-Severity Vulnerabilities in Enterprise Products

Cisco Patches High-Severity Vulnerabilities in Enterprise Products 2026-05-07 at 14:33 By Ionut Arghire Successful exploitation of the flaws could lead to code execution, server-side request forgery attacks, and denial-of-service conditions. The post Cisco Patches High-Severity Vulnerabilities in Enterprise Products appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

Cisco Patches High-Severity Vulnerabilities in Enterprise Products Read More »

Cisco Moves to Acquire Astrix Security to Tackle Non-Human Identity Risks

Cisco Moves to Acquire Astrix Security to Tackle Non-Human Identity Risks 2026-05-04 at 22:03 By Mike Lennon Cisco on Monday announced its intent to acquire Astrix Security, a startup focused on securing non-human identities (NHIs) such as API keys, service accounts, and OAuth tokens increasingly used by applications and AI agents. In a blog post, Cisco said

Cisco Moves to Acquire Astrix Security to Tackle Non-Human Identity Risks Read More »

Scroll to Top