EarlyNarratives
Pricing
Start free trialSign in
Start free trialSign in
Storyline

Interlock ransomware exploited Cisco firewall zero-day weeks before patch

The Interlock ransomware group exploited a critical zero-day vulnerability (CVE-2026-20131) in Cisco Secure Firewall Management Center software starting January 26, weeks before Cisco publicly disclosed and patched the flaw on March 4.

Evidence locked
Today's free sample is only available for the edition's flagship storyline.
BackUnlock Pro
Evidence preview
  • CSO Online - Cisco firewall zero-day exploited by ransomware
    csoonline.com
  • Interlock ransomware targeting of max severity Cisco FMC zero-day precedes disclosure
    SC Media
  • Interlock ransomware gang exploited Cisco firewall zero-day weeks before disclosure: Amazon
    The Record (Recorded Future News)
  • AWS Warns Hackers Have Abused Cisco Firewall Zero-Day Since January
    Infosecurity Magazine
  • Cisco Firewall Vulnerability Exploited as Zero-Day in Interlock Ransomware Attacks
    SecurityWeek