Security Bulletin

Modernize roadways with Cisco’s secure networking for ITS. Boost safety, efficiency, and real-time data. See our solutions at ITS World Congress 2025, Booth #1741

Discover how Model Context Protocol (MCP) simplifies SD-WAN development by enabling AI to communicate with network infrastructure using natural language, replacing complex vendor-specific APIs.

Companies ready to move beyond reactive defense and toward full-spectrum protection need to invest in strategies that rally around resiliency, unified cybersecurity, and data protection.

Cisco has been recognized as a Leader in the IDC MarketScape: Worldwide Enterprise Hybrid Firewall 2025 Vendor Assessment.

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

[This is a Guest Diary by Joseph Noa, an ISC intern as part of the SANS.edu BACS program]

DPRK hackers are throwing every kind of malware at the wall and seeing what sticks, deploying stealers, backdoors, and ransomware all at once.

The company disclosed a critical FortiSIEM flaw with a PoC exploit for it the same week researchers warned of an ominous surge in malicious traffic targeting the vendor's SSL VPNs.

Developers maintaining the images made the "intentional choice" to leave the artifacts available as "a historical curiosity," given the improbability they'd be exploited.

According to a recent Forescout analysis, open source models were significantly less successful in vulnerability research than commercial and underground models.

Researchers observed exploitation attempts against a vulnerability with a CVSS score of 10 in a popular Erlang-based platform for critical infrastructure and OT development.

The leak serves as a wake-up call: Being prepared is the cornerstone of a successful defense, and those who don't prepare are going to face uncertainty caused by the lack of attackers' accountability.