Ransomware
- Cisco FMC Zero-Day CVE-2026-20131: Interlock Ransomware Had Root for 36 Days Before the Patch Existed
CVE-2026-20131, a CVSS 10.0 zero-day in Cisco Secure Firewall Management Center, was exploited by the Interlock ransomware gang for 36 days before Cisco disclosed it. CISA added it to KEV with a federal patch deadline of March 22; no workarounds exist.
- When IT incidents become patient harm: Stryker, surgery delays, and the CISA Intune advisory
The March 11 Stryker cyberattack delayed surgeries the week of March 16. Personalised implants couldn't be shipped because the ordering systems were down. CISA named the attack vector -- Microsoft endpoint management -- and issued an urgent advisory. What this means for healthcare IT and for anyone running Microsoft infrastructure in critical functions.
- Slopoly: AI-Generated Malware in a Real Ransomware Attack
IBM X-Force has identified Slopoly: a likely AI-generated PowerShell backdoor deployed by ransomware group Hive0163 in early 2026. It's unsophisticated -- and that's exactly why it matters.