Cisco, NSA Warn of Attacks Targeting Catalyst SD-WAN Zero Day
Cisco released software updates on Feb. 25 to fix the vulnerability, which affects both on-premises and cloud deployments of the Catalyst SD-WAN Controller.
All topics
Vulnerabilities
41 Posts
China Targets Dell Flaw, New Ivanti Exploitation, and Cyber Shenanigans on The Pitt!
It’s a light news week, but we have some fun content for you! This week, we talk about our latest hacker movie episode–STAR WARS–which is up on the site and all of our feeds now (0:25), then we dig into a nasty hard-coded. credential bug in Dell RecoverPoint for Virtual Machines that Chinese threat actors are exploiting […]
Researchers Warn of ‘Widespread’ Ivanti EPMM Exploitation
Exploitation of CVE-2026-1281 and CVE-2026-1340 is “widespread and mostly automated," according to Unit 42 researchers.
Chinese Actors Exploited Dell RecoverPoint for VMs Flaw Since 2024
The hardcoded credential vulnerability (CVE-2026-22769) exists in Dell RecoverPoint for Virtual Machines and has been exploited since mid-2024.
Six Zero Days From Microsoft, One From Apple, and a CSI: Cyber Throwback
This week was a cornucopia of zero days. We talk about the six (!) actively exploited vulnerabilities that Microsoft patched this week in its February update (2:46), then we discuss the one that Apple fixed in iOS 26.3, a vulnerability that has been used in what the company calls an “extremely sophisticated attack” against a few individuals (7:24). […]
Apple Patches iOS Zero Day CVE-2026-20700
That vulnerability also was patched in macOS, but the active exploitation that Apple disclosed was against iOS only.