#cisco
5 articles
In the past month, ZCyberNews has covered seven Cisco-related stories, with Interlock and The Gentlemen among the top threat actors observed. Two critical vulnerabilities, CVE-2026-20127 and CVE-2026-20182, each with a CVSS score of 10, were highlighted alongside CVE-2022-20653, CVE-2024-20401, and CVE-2024-55591. The coverage spans enterprise networking, telecommunications, service providers, software consultancy, and technology sectors, with impacts reported globally, in North America, Turkey, and the UK. The severity mix includes four critical and two high-severity incidents.
CRITICALCisco Catalyst SD-WAN Controller Flaw CVE-2026-20182 Scores Perfect
Rapid7 discovered CVE-2026-20182, a 10.0-CVSS authentication bypass in Cisco Catalyst SD-WAN Controller. Unauthenticated attackers can inject SSH keys and issue NETCONF commands.
CRITICALThe Gentlemen RaaS Internal Leak Exposes Admin, Affiliates, Tactics
A leaked backend database from The Gentlemen RaaS operation reveals 9 accounts, admin TOX ID, initial access via Fortinet/Cisco edge flaws, and a 190,000 USD ransom payout.
HIGHCisco DoS Flaw CVE-2026-20188 Requires Manual Reboot to Recover
CVE-2026-20188: Unauthenticated attackers can crash Cisco Crosswork Network Controller and NSO via low-complexity exploit. No patch for older releases; manual reboot required.
Cisco Acquires Astrix Security for Non-Human Identity Protection
Cisco announced plans to acquire Astrix Security to address non-human identity risks in AI and machine workloads. The deal expands Cisco's identity security portfolio.
CRITICALInterlock Ransomware Exploits Cisco FMC Zero-Day in Global Attacks
The Interlock ransomware group is actively exploiting a zero-day vulnerability in Cisco Firepower Management Center to breach networks. Recorded Future identified 31 high-impact flaws in March 2026, a 139% monthly increase.
Stay Updated
Get the latest cybersecurity news delivered to your inbox.