Attention: You are using an outdated browser, device or you do not have the latest version of JavaScript downloaded and so this website may not work as expected. Please download the latest software or switch device to avoid further issues.
| 2 Mar 2026 | |
| Written by Gabi Gerber | |
| Attacks & Threats |
| Security Operation Center, Hacking Topics |
A newly disclosed maximum-severity security flaw in Cisco Catalyst SD-WAN Controller (formerly vSmart) and Catalyst SD-WAN Manager (formerly vManage) has come under active exploitation in the wild as part of malicious activity that dates back to 2023. The vulnerability, tracked as CVE-2026-20127 (CVSS score: 10.0), allows an unauthenticated remote attacker to bypass authentication and obtain administrative privileges on an affected system by sending a crafted request. Cisco credited the Australian Signals Directorate's Australian Cyber Security Centre (ASD-ACSC) for reporting the vulnerability. The networking equipment major is tracking the exploitation and subsequent post-compromise activity under the moniker UAT-8616, describing the cluster as a "highly sophisticated cyber threat actor." Read more
Does life feel Orwellian sometimes? One researcher has a solution for you: graphic tees that confuse the neural networks in surveillance cameras. More...
Threat actors can easily steal one-time passwords sent by text when they conduct a SIM swap attack. This can lead to acc… More...
A leaked GitHub token underscores what most organizations get wrong: Treating secrets management as a tooling problem ra… More...
In addition to executing entirely in memory, the malware's infection chain incorporates other anti-analysis techniques d… More...
The disgruntled researcher released yet another PoC for a Windows Defender bug that allows for system takeover, showing … More...
Does life feel Orwellian sometimes? One researcher has a solution for you: graphic tees that confuse the neural networks in surveillance cameras. More...
Threat actors can easily steal one-time passwords sent by text when they conduct a SIM swap attack. This can lead to acc… More...
A leaked GitHub token underscores what most organizations get wrong: Treating secrets management as a tooling problem ra… More...
In addition to executing entirely in memory, the malware's infection chain incorporates other anti-analysis techniques d… More...
The disgruntled researcher released yet another PoC for a Windows Defender bug that allows for system takeover, showing … More...