Cisco

Cisco to Acquire WideField Security to Boost Splunk’s Agentic SOC

Acquisition, Cisco, Funding/M&A, M&A, M&A Tracker, Splunk, WideField /

Cisco to Acquire WideField Security to Boost Splunk’s Agentic SOC 2026-06-19 at 10:22 By Eduard Kovacs WideField will accelerate Agentic SOC capabilities by expanding the lens on threat investigation to include identity, credentials, sessions, and blast radius. The post Cisco to Acquire WideField Security to Boost Splunk’s Agentic SOC appeared first on SecurityWeek. This article […]

Cisco to Acquire WideField Security to Boost Splunk’s Agentic SOC Read More »

Critical Command Execution Vulnerability Patched in Cisco ISE

Cisco, Network Security, patches, Vulnerabilities, vulnerability /

Critical Command Execution Vulnerability Patched in Cisco ISE 2026-06-18 at 13:27 By Ionut Arghire Insufficient validation of user input allows an attacker to gain access to the underlying OS and elevate their privileges to root. The post Critical Command Execution Vulnerability Patched in Cisco ISE appeared first on SecurityWeek. This article is an excerpt from

Critical Command Execution Vulnerability Patched in Cisco ISE Read More »

Cisco discloses second exploited SD-WAN vulnerability in two weeks (CVE-2026-20262)

0-day, APT, CISA, Cisco, Don't miss, Hot stuff, News, SD-WAN /

Cisco discloses second exploited SD-WAN vulnerability in two weeks (CVE-2026-20262) 2026-06-16 at 13:20 By Zeljka Zorz Cisco has revealed another Catalyst SD-WAN Manager vulnerability (CVE-2026-20262) that its Product Security Incident Response Team observed being exploited by attackers. But the associated security advisory also states that “the vulnerability was found during internal security testing”, raising the

Cisco discloses second exploited SD-WAN vulnerability in two weeks (CVE-2026-20262) Read More »

Cisco Patches Another SD-WAN Zero-Day Exploited in Attacks

Cisco, exploited, Featured, Network Security, SD-WAN, Vulnerabilities, Zero-Day /

Cisco Patches Another SD-WAN Zero-Day Exploited in Attacks 2026-06-16 at 09:20 By Eduard Kovacs Cisco recently became aware of the exploitation of CVE-2026-20262, a Catalyst SD-WAN Manager zero-day that allows arbitrary file write. The post Cisco Patches Another SD-WAN Zero-Day Exploited in Attacks appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View

Cisco Patches Another SD-WAN Zero-Day Exploited in Attacks Read More »

CISA orders federal agencies to “patch smarter”

CISA, Cisco, Don't miss, enterprise, Government, Hot stuff, News, NIST, risk assessment, USA, vulnerability management /

CISA orders federal agencies to “patch smarter” 2026-06-11 at 20:18 By Zeljka Zorz The US Cybersecurity and Infrastructure Security Agency (CISA) has issued a Binding Operational Directive that will change how the US federal government approaches vulnerability management. The directive arrives as the patching problem has become nearly unmanageable, driven by a surge in newly

CISA orders federal agencies to “patch smarter” Read More »

Cisco SD-WAN 0-day exploited, no patch available (CVE-2026-20245)

0-day, APT, Cisco, Don't miss, exploit, Hot stuff, Mandiant, News, SD-WAN /

Cisco SD-WAN 0-day exploited, no patch available (CVE-2026-20245) 2026-06-05 at 15:49 By Zeljka Zorz A 0-day privilege escalation vulnerability (CVE-2026-20245) in Cisco Catalyst SD-WAN Manager that has yet to be patched by Cisco is being leveraged by attackers. “To exploit this vulnerability, an attacker must have netadmin privileges on an affected system. This would require

Cisco SD-WAN 0-day exploited, no patch available (CVE-2026-20245) Read More »

Cisco Warns of 7th SD-WAN Zero-Day Exploited in 2026

Cisco, exploited, Featured, SD-WAN, Vulnerabilities, Zero-Day /

Cisco Warns of 7th SD-WAN Zero-Day Exploited in 2026 2026-06-05 at 09:23 By Eduard Kovacs The vulnerability is tracked as CVE-2026-20245 and it can allow arbitrary command execution as root, but no patch yet. The post Cisco Warns of 7th SD-WAN Zero-Day Exploited in 2026 appeared first on SecurityWeek. This article is an excerpt from

Cisco Warns of 7th SD-WAN Zero-Day Exploited in 2026 Read More »

Cisco Warns of Available PoC for Critical Unified CM Vulnerability

Cisco, PoC, Vulnerabilities, vulnerability /

Cisco Warns of Available PoC for Critical Unified CM Vulnerability 2026-06-04 at 13:16 By Ionut Arghire The high-severity flaw can be exploited remotely, without authentication, in server-side request forgery (SSRF) attacks. The post Cisco Warns of Available PoC for Critical Unified CM Vulnerability appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View

Cisco Warns of Available PoC for Critical Unified CM Vulnerability Read More »

Frontier AI models collapse under multi-turn AI attacks, Cisco finds

AI, Amazon, Anthropic, Cisco, cybersecurity, Don't miss, Google, News, OpenAI, report, research /

Frontier AI models collapse under multi-turn AI attacks, Cisco finds 2026-05-28 at 10:16 By Mirko Zorz Attackers who probe large language models rarely give up after one refusal. They reframe, build context across turns, adopt personas, and escalate gradually. New research from Cisco’s AI threat intelligence team finds that the safety benchmarks used across the

Frontier AI models collapse under multi-turn AI attacks, Cisco finds Read More »

Cisco refines its risk-based vulnerability disclosure for the AI era

AI, Cisco, cybersecurity, News, vulnerability assessment /

Cisco refines its risk-based vulnerability disclosure for the AI era 2026-05-25 at 21:27 By Sinisa Markovic Security teams already struggle with long lists of vulnerabilities and limited time to patch them. Cisco believes AI could increase that pressure by accelerating vulnerability discovery and increasing the number of findings security teams need to review. The company

Cisco refines its risk-based vulnerability disclosure for the AI era Read More »

Cisco Patches Critical Vulnerability in Secure Workload

Cisco, patch, Vulnerabilities, vulnerability /

Cisco Patches Critical Vulnerability in Secure Workload 2026-05-21 at 15:24 By Ionut Arghire Insufficient validation and authentication in the Secure Workload’s REST APIs provide remote attackers with Site Admin privileges. The post Cisco Patches Critical Vulnerability in Secure Workload appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

Cisco Patches Critical Vulnerability in Secure Workload Read More »

Cisco patches another actively exploited SD-WAN zero-day (CVE-2026-20182)

0-day, APT, Cisco, Don't miss, Hot stuff, News, Rapid7, SD-WAN /

Cisco patches another actively exploited SD-WAN zero-day (CVE-2026-20182) 2026-05-15 at 16:07 By Zeljka Zorz Cisco has patched yet another Catalyst SD-WAN Controller authentication bypass vulnerability (CVE-2026-20182) that has been exploited as a zero-day by “a highly sophisticated cyber threat actor”. About CVE-2026-20182 CVE-2026-20182 – affecting both Cisco Catalyst SD-WAN Controller (the “brain” of the Cisco

Cisco patches another actively exploited SD-WAN zero-day (CVE-2026-20182) Read More »

Cisco Patches Another SD-WAN Zero-Day, the Sixth Exploited in 2026

Cisco, exploited, Featured, SD-WAN, UAT-8616, Vulnerabilities, Zero-Day /

Cisco Patches Another SD-WAN Zero-Day, the Sixth Exploited in 2026 2026-05-15 at 10:16 By Eduard Kovacs The zero-day, tracked as CVE-2026-20182, has been exploited in targeted attacks by a sophisticated threat actor identified as UAT-8616. The post Cisco Patches Another SD-WAN Zero-Day, the Sixth Exploited in 2026 appeared first on SecurityWeek. This article is an

Cisco Patches Another SD-WAN Zero-Day, the Sixth Exploited in 2026 Read More »

Cisco Patches High-Severity Vulnerabilities in Enterprise Products

Cisco, Network Security, patch, Vulnerabilities, vulnerability /

Cisco Patches High-Severity Vulnerabilities in Enterprise Products 2026-05-07 at 14:33 By Ionut Arghire Successful exploitation of the flaws could lead to code execution, server-side request forgery attacks, and denial-of-service conditions. The post Cisco Patches High-Severity Vulnerabilities in Enterprise Products appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

Cisco Patches High-Severity Vulnerabilities in Enterprise Products Read More »

Cisco Moves to Acquire Astrix Security to Tackle Non-Human Identity Risks

Acquisition, Artificial Intelligence, Cisco, Identity & Access /

Cisco Moves to Acquire Astrix Security to Tackle Non-Human Identity Risks 2026-05-04 at 22:03 By Mike Lennon Cisco on Monday announced its intent to acquire Astrix Security, a startup focused on securing non-human identities (NHIs) such as API keys, service accounts, and OAuth tokens increasingly used by applications and AI agents. In a blog post, Cisco said

Cisco Moves to Acquire Astrix Security to Tackle Non-Human Identity Risks Read More »

Cisco Releases Open Source Tool for AI Model Provenance 

AI model, Artificial Intelligence, Cisco, Model Provenance Kit, open source /

Cisco Releases Open Source Tool for AI Model Provenance  2026-05-01 at 13:57 By Eduard Kovacs The new kit aims to address risks related to poisoned models, regulatory issues, supply chain integrity, and incident response. The post Cisco Releases Open Source Tool for AI Model Provenance  appeared first on SecurityWeek. This article is an excerpt from

Cisco Releases Open Source Tool for AI Model Provenance  Read More »

Cisco releases open-source toolkit for verifying AI model lineage

AI, Cisco, Don't miss, enterprise, GitHub, News, open source, Python, Risk Management /

Cisco releases open-source toolkit for verifying AI model lineage 2026-04-30 at 16:02 By Mirko Zorz Enterprises pulling models from Hugging Face and other open repositories rarely keep records of how those models are altered after download, leaving organizations with little ability to confirm what they are running in production. The State of AI Security 2026

Cisco releases open-source toolkit for verifying AI model lineage Read More »

US Federal Agency’s Cisco Firewall Infected With ‘Firestarter’ Backdoor

backdoor, Cisco, Firestarter, Malware & Threats /

US Federal Agency’s Cisco Firewall Infected With ‘Firestarter’ Backdoor 2026-04-24 at 14:35 By Ionut Arghire The malware provides remote access and control of infected devices and maintains post-patching persistence. The post US Federal Agency’s Cisco Firewall Infected With ‘Firestarter’ Backdoor appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

US Federal Agency’s Cisco Firewall Infected With ‘Firestarter’ Backdoor Read More »

New Cisco firewall malware can only be killed by pulling the plug

backdoor, CISA, Cisco, Don't miss, firewall, government-backed attacks, Hot stuff, NCSC, News /

New Cisco firewall malware can only be killed by pulling the plug 2026-04-24 at 13:17 By Zeljka Zorz Suspected state-sponsored attackers are using a custom backdoor to persistently compromise Cisco security devices (firewalls), the US CISA and the UK National Cyber Security Centre warned on Thusday. “The [Firestarter] malware (…) is relevant for both Cisco

New Cisco firewall malware can only be killed by pulling the plug Read More »

Phishing reclaims the top initial access spot, attackers experiment with AI tools

Cisco, cybercrime, cybersecurity, News, phishing, report, scams /

Phishing reclaims the top initial access spot, attackers experiment with AI tools 2026-04-22 at 13:48 By Anamarija Pogorelec Phishing returned as the leading method attackers used to break into organizations in the first quarter of 2026, accounting for over a third of engagements where initial access could be determined, according to Cisco Talos. It is

Phishing reclaims the top initial access spot, attackers experiment with AI tools Read More »

Scroll to Top