Security Bulletin

Attackers targeted admin accounts, and once authenticated, exported device configurations including hashed credentials and other sensitive information.

Anthropic proves that LLMs can be fairly resistant to abuse. Most developers are either incapable of building safer tools, or unwilling to invest in doing so.

The remote access Trojan lets an attacker remotely control a victim's phone and can generate malicious apps from inside the Play Store.

The future of cybersecurity means defending everywhere. Securing IoT, cloud, and remote work requires a unified edge-to-cloud strategy. (First in a three-part series.)

As quantum computing advances, secure, interoperable standards will be critical to making quantum key distribution (QKD) practical, trusted, and future-proof.

I have already talked about various React2Shell exploit attempts we have observed in the last weeks. But new varieties of the exploit are popping up, and the most recent one is using this particular version of the exploit:

Cisco’s Connected Santa program brings Christmas cheer to children in hospitals through the power of Webex and a team of dedicated Cisco volunteers. Discover the secrets behind the holiday magic.

Threat actors wielding stolen AWS Identity and Access Management (IAM) credentials leverage Amazon EC and EC2 infrastructure across multiple customer environments.

Learn how Cisco Meraki Client Analytics (with Zebra integration), Roaming Health, and Proactive Packet Capture features revolutionize wireless network troubleshooting.

Is your network ready for AI traffic? Discover five ways proactive network assurance can optimize AI workloads—without slowing down everything else.

In the React2Shell saga, non-working and trivial proof-of-concept exploits led to confusion and perhaps a false sense of security. Can the onslaught of PoCs be tamed?

Cisco ISE and ServiceNow are redefining asset-aware access by unifying IT asset management and network security in real time.