Cisco email security products targeted in zero-day campaign

Filipino

Two groups linked to China are exploiting a newly discovered vulnerability in Cisco's email security products. The campaign involves zero-day attacks, highlighting ongoing cybersecurity risks. The issue was reported on December 19, 2025.

Cisco's email security solutions have come under active attack from two Chinese-nexus threat groups. These actors are leveraging a zero-day flaw, meaning the vulnerability was unknown to the company prior to exploitation. Such campaigns underscore the persistent challenges in securing enterprise email systems against sophisticated adversaries.

The exploitation targets products designed to protect against email-based threats, potentially allowing attackers to bypass defenses and deliver malware or steal data. No specific details on the flaw's nature or the exact products affected were disclosed in initial reports, but the involvement of state-linked groups raises concerns about targeted espionage.

Cisco has yet to issue an official response in the available information, though the discovery prompts urgent patching and monitoring recommendations for users. This incident fits into a broader pattern of zero-day abuses by Chinese-affiliated hackers, as seen in previous high-profile breaches.

Mga Kaugnay na Artikulo

Illustration depicting the Linux CopyFail vulnerability enabling root access exploits alongside Ubuntu's DDoS-induced outage.
Larawang ginawa ng AI

Linux CopyFail exploit threatens root access amid Ubuntu outage

Iniulat ng AI Larawang ginawa ng AI

A critical Linux vulnerability known as CopyFail, tracked as CVE-2026-31431, allows attackers to gain root access on systems running kernels since 2017. Publicly released exploit code has heightened risks for data centers and personal devices. Ubuntu's infrastructure has been offline for over a day due to a DDoS attack, hampering security communications.

Trend Micro Apex One zero-day exploited in the wild

A newly discovered flaw in Trend Micro's Apex One allows hackers to inject malicious code. The zero-day vulnerability is being actively exploited.

ShinyHunters exploits critical PeopleSoft zero-day vulnerability

Iniulat ng AI

A ransomware group known as ShinyHunters exploited a critical zero-day flaw in Oracle’s PeopleSoft software to target about 100 organizations. The attackers stole gigabytes of data from victims, including the University of Nottingham, and issued extortion demands. Oracle has released a mitigation but not a full patch.

China warns of retaliation to EU's cybersecurity crackdown on Huawei, ZTE

China's commerce ministry has threatened investigations into the EU or its businesses and reciprocal measures in response to the European Union's January 2026 cybersecurity proposal, which could designate China a 'cybersecurity threat' and list firms like Huawei and ZTE as 'high-risk suppliers' for mandatory removal from 5G networks. The warning comes amid the EU's push to phase out such vendors from telecom, hi-tech sectors, and critical infrastructure within three years.

June 18, 2026 00:38

Massive Fortinet breach exposes credentials of major organizations

May 20, 2026 21:38

Google publishes exploit code for unfixed chromium vulnerability

May 20, 2026 10:09

Microsoft warns of password reset exploits by hackers

May 10, 2026 02:50

FBI urges router security steps after Russian GRU attacks

May 05, 2026 17:44

US government issues urgent CopyFail warning as Linux patches roll out

Gumagamit ng cookies ang website na ito

Gumagamit kami ng cookies para sa analytics upang mapabuti ang aming site. Basahin ang aming patakaran sa privacy para sa higit pang impormasyon.
Tanggihan