Cisco Zero-Day Under Active Attack, Conduent Breach Swells to 25M, and AI Fuels Ransomware Surge

Marquis Sues SonicWall, Alleging Vendor's Breach Led to Ransomware Attack on 74 Banks

In a significant legal development for supply chain liability, financial services provider Marquis Software Solutions has filed a lawsuit against cybersecurity vendor SonicWall. Marquis alleges that a 2025 breach of SonicWall's MySonicWall cloud backup service...

US Treasury's OCC Remediates Critical BankNet Portal Vulnerability After Researcher Disclosure

The Office of the Comptroller of the Currency (OCC), a bureau within the U.S. Department of the Treasury, announced it has successfully remediated a cybersecurity vulnerability in its critical BankNet portal. The flaw was reported by a security researcher on F...

Threat Intelligence Supply Chain is Broken, Georgia Tech Researchers Warn

Researchers from Georgia Tech have revealed significant weaknesses in the global threat intelligence sharing ecosystem. Their study, presented on February 25, 2026, found that crucial information sharing between security vendors, antivirus companies, and sandb...

IBM X-Force: AI and RaaS Fuel 49% Surge in Ransomware Groups

The 2026 IBM X-Force Threat Intelligence Index, released on February 26, 2026, paints a concerning picture of the evolving threat landscape. The report reveals a 49% increase in ransomware groups compared to the previous year, a surge driven by the proliferati...

Google Security Operations Unifies Access Control with Native IAM Integration

Google has enhanced its Security Operations platform by migrating its permission model to Google Cloud's native Identity and Access Management (IAM) framework. The update, announced on February 25, 2026, allows administrators to manage Role-Based Access Contro...

Critical Unauthenticated RCE Flaw (CVE-2026-33017) in Langflow AI Platform Actively Exploited

A critical unauthenticated remote code execution (RCE) vulnerability, CVE-2026-33017, has been disclosed in the popular open-source AI framework, Langflow. The flaw allows an attacker to execute arbitrary Python code on a vulnerable server with a single HTTP r...

CISA Orders Patching for Two Actively Exploited Cisco SD-WAN Flaws

Update:Cisco has confirmed CVE-2026-20127 has a critical CVSS score of 10.0. Threat actors are actively chaining this authentication bypass vulnerability with CVE-2022-20775 (privilege escalation) to achieve root access and persistence on affected Cisco Catalyst SD-W...

Conduent Data Breach May Be Largest in U.S. History; Texas AG Investigates

Update:New information confirms the Conduent data breach affected over 25 million individuals across the U.S., including 10.5 million in Oregon, in addition to the previously reported 15.4 million in Texas. The attack's dwell time has been precisely identified as Oct...