Signal
Interlock ransomware exploited Cisco firewall zero-day weeks before patch
The Interlock ransomware group exploited a critical zero-day vulnerability (CVE-2026-20131) in Cisco Secure Firewall Management Center software starting January 26, weeks before Cisco publicly disclosed and patched the flaw on March 4.
rss
cveexploitsransomwareincident_responsesecurity_advisory
Evidence locked
Today's free sample is only available for the edition's flagship signal.
Evidence preview
- CSO Online - Cisco firewall zero-day exploited by ransomwarecsoonline.com
- Interlock ransomware targeting of max severity Cisco FMC zero-day precedes disclosureSC Media
- Interlock ransomware gang exploited Cisco firewall zero-day weeks before disclosure: AmazonThe Record (Recorded Future News)
- AWS Warns Hackers Have Abused Cisco Firewall Zero-Day Since JanuaryInfosecurity Magazine
- Cisco Firewall Vulnerability Exploited as Zero-Day in Interlock Ransomware AttacksSecurityWeek