Critical Zero-Days in Cisco & Dell Actively Exploited; Major Breaches at ManoMano and Dutch Government

Publication Date: February 28, 2026

Summary

This reporting period is marked by high-severity incidents, including the active exploitation of two critical, CVSS 10.0 zero-day vulnerabilities in Cisco SD-WAN and Dell RecoverPoint products, prompting emergency directives and urgent patching advisories. A massive supply chain data breach at European retailer ManoMano exposed the data of 38 million customers, while a sophisticated phishing campaign named 'Diesel Vortex' targeted the US and European logistics sectors. Further incidents include a prolonged breach at the Dutch prison agency, the abuse of AI tools like ChatGPT and Claude for malicious campaigns, and legal fallout from a 2025 ransomware attack linked to a flaw in SonicWall's cloud backup service.

Today New Articles

ManoMano Breach: 38 Million Customers Exposed After Third-Party Customer Service Provider Hacked

European DIY e-commerce giant ManoMano has disclosed a significant data breach impacting approximately 38 million customers across France, Germany, Italy, Spain, and the UK. The incident, which occurred in January 2026, was not a direct breach of ManoMano's sy...

‘Diesel Vortex’ Phishing Ring Steals Over 1,600 Credentials from US & European Logistics Firms

A financially motivated threat group dubbed 'Diesel Vortex' has been identified targeting the freight and logistics industry in the United States and Europe since September 2025. The campaign utilized a Phishing-as-a-Service (PaaS) model, complete with call ce...

Dutch Prison Agency Data Exposed for Five Months in Wider Government Hack

An investigation has revealed that hackers had prolonged access, for at least five months, to the systems of the Dutch prison agency (Dienst Justitiële Inrichtingen - DJI). The breach exposed sensitive staff data, including email addresses, phone numbers, and...

Accounting Firm Legacy Professionals LLP Reports Data Breach Affecting Over 215,000 People

The accounting and consulting firm Legacy Professionals LLP has reported a data breach to the Attorney General of Maine, indicating that the personal information of over 215,000 people has been compromised. The firm discovered suspicious activity on its intern...

Hacker Reportedly Used 'Jailbroken' AI Chatbot Claude to Breach Mexican Government Agencies

A hacker has reportedly used Anthropic's AI chatbot, Claude, to facilitate a series of cyberattacks against Mexican government agencies, resulting in the theft of approximately 150 GB of data. The compromised information is said to include 195 million taxpayer...

Article Updates

Microsoft and Dell Patch Actively Exploited Zero-Day Vulnerabilities

Update:Further analysis of Microsoft's CVE-2026-26119 in Windows Admin Center reveals it's an Improper Authentication (CWE-287) flaw, discovered by Andrea Pierini. Exploitation requires an authenticated attacker on the same network. New guidance includes detailed det...