Cybersecurity, vulnerabilities, threats, and defense
Cisco disclosed its seventh SD-WAN zero-day of 2026 — CVE-2026-20245 — a command injection flaw allowing root access on Catalyst SD-WAN Manager. No patch is available yet, and there’s no workaround.
Nelnet Servicing exposed 2.5M student loan records including SSNs in a breach that went undetected for weeks. Here’s what borrowers need to do now.
A new 269-page House bill would regulate frontier AI with independent audits, open-source security grants, and a $300M NIST center. But the fight over state preemption could tear it apart.
Cisco disclosed its 7th actively exploited SD-WAN zero-day in 2026. CVE-2026-20245 allows root command execution with no patch available yet. Here’s what defenders need to know.
A bipartisan House bill proposes sweeping AI regulation including $300M for NIST’s CAISI, open-source security grants through CISA, and mandated AI-assisted vulnerability review — but faces fierce opposition over language that would preempt state AI laws.
A breach at Nelnet Servicing exposed names, addresses, and Social Security numbers for 2.5 million student loan borrowers. Here’s what affected people need to know.
A bipartisan House bill proposes sweeping oversight of frontier AI models, including mandatory third-party audits, $300M for NIST’s CAISI, and open-source security grants. It’s already drawing fire over preemption of state AI laws.
Cisco disclosed its seventh exploited SD-WAN zero-day of 2026. CVE-2026-20245 allows root command execution with no patch available yet. Here’s what defenders need to know.
A new malware called IronWorm is spreading through npm by poisoning legitimate packages with a Rust-based stealer that uses stolen credentials to self-replicate. It deploys an eBPF rootkit and targets AI development credentials, making it one of the more sophisticated supply chain attacks in recent memory.
Password manager Dashlane disclosed that fewer than 20 encrypted vaults were downloaded after a brute-force attack targeting 2FA protections. The vaults are encrypted, but the incident raises questions about how the attackers bypassed two-factor authentication.
