{"vulnerability": "CVE-2026-20131", "sightings": [{"uuid": "a6b91c6f-b65c-4119-b8d1-23fc31edbdb1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/theitnerd.ca/post/3mgbao3oioi2u", "content": "", "creation_timestamp": "2026-03-04T21:39:38.387491Z"}, {"uuid": "aced3895-5d5d-4283-bccd-af04dc1b92ef", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mgbd7yqk5c2n", "content": "", "creation_timestamp": "2026-03-04T22:25:26.714323Z"}, {"uuid": "4a87ec2c-c8de-46c9-9126-d9c8f3a7f75c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://advisories.ncsc.nl/advisory?id=NCSC-2026-0076", "content": "", "creation_timestamp": "2026-03-04T19:49:12.000000Z"}, {"uuid": "a67f84b9-fb6b-4a8d-b98d-f893c2e020bf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/shiojiri.com/post/3mgcaulytks2k", "content": "", "creation_timestamp": "2026-03-05T07:15:58.008873Z"}, {"uuid": "3e19c6b1-986d-4373-b116-cf0ef9acf7c0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://www.cert.at/de/warnungen/2026/3/kritische-sicherheitslucken-in-cisco-secure-firewall-produkten-updates-verfugbar", "content": "", "creation_timestamp": "2026-03-05T11:03:43.000000Z"}, {"uuid": "af857d07-8ae1-41f7-ae65-95ab06e1d25d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/o2cloud.bsky.social/post/3mgcyc5zbe22b", "content": "", "creation_timestamp": "2026-03-05T14:15:09.260008Z"}, {"uuid": "653bdb79-f204-41fe-be47-a8c31cf51ba7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3mgbqsk2slf2p", "content": "", "creation_timestamp": "2026-03-05T02:28:27.744856Z"}, {"uuid": "e0c7fbcc-2f4e-4bd5-adcc-eb6ac7bf1ba0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/thedailytechfeed.com/post/3mgfydt3je22m", "content": "", "creation_timestamp": "2026-03-06T18:54:04.639703Z"}, {"uuid": "353f1d4b-c7b1-4052-a251-bec392b62587", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://gist.github.com/alon710/be29a6e9e8250480c86c1dd8a6849041", "content": "", "creation_timestamp": "2026-03-05T07:50:06.000000Z"}, {"uuid": "3456bc7b-e3aa-428f-b73c-31ffa956be59", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://infosec.exchange/users/vuldb/statuses/116172176223102543", "content": "", "creation_timestamp": "2026-03-04T17:52:12.341059Z"}, {"uuid": "e2bb10d9-194c-48c9-a465-6d39ad12ecee", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://infosec.exchange/users/AAKL/statuses/116171825746260869", "content": "", "creation_timestamp": "2026-03-04T16:23:04.728856Z"}, {"uuid": "49c45ae6-b023-47e2-9fd1-6f5b3d30c0ac", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mgavkatity2s", "content": "", "creation_timestamp": "2026-03-04T18:20:39.067689Z"}, {"uuid": "36d91e71-3c1f-4c8a-8935-f8646e137ad1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/taggart-tech.com/post/3mgaut62z722w", "content": "", "creation_timestamp": "2026-03-04T18:07:43.403405Z"}, {"uuid": "8c6c004f-cc03-4739-b8e7-cd072408f3cd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://infosec.exchange/users/mttaggart/statuses/116172237196258078", "content": "", "creation_timestamp": "2026-03-04T18:07:43.831746Z"}, {"uuid": "3d99c04a-8b63-47e5-89f6-1d56a9ebc5fe", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-20131", "type": "seen", "source": "https://bsky.app/profile/cyberveille-ch.bsky.social/post/3mhm3g77kvd2q", "content": "", "creation_timestamp": "2026-03-21T22:30:13.668870Z"}, {"uuid": "ae563018-f48d-487c-89e2-9f60556ddab1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/technoholic.bsky.social/post/3mhjoatd7v42d", "content": "", "creation_timestamp": "2026-03-20T23:29:16.485998Z"}, {"uuid": "82eff5fc-2a8c-43b6-b2e7-dbd8d72da87e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3mi3lkciznf2s", "content": "", "creation_timestamp": "2026-03-28T02:28:47.461448Z"}, {"uuid": "595ab23b-97ca-460b-a35a-a38405e8a82a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3mhoz7uwazz2o", "content": "", "creation_timestamp": "2026-03-23T02:28:53.099193Z"}, {"uuid": "263380dd-f032-479b-a93e-b579517d26b0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/kotosecurity.bsky.social/post/3mhzle5ugiw2x", "content": "", "creation_timestamp": "2026-03-27T07:20:01.474761Z"}, {"uuid": "5285e290-d5e0-41e8-a826-156c4ff7f188", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/kitafox.bsky.social/post/3mhott34svf2l", "content": "", "creation_timestamp": "2026-03-23T00:52:14.932176Z"}, {"uuid": "a5183deb-742b-4884-b992-f32862689cb8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/kotosecurity.bsky.social/post/3mhzle6o2cu2b", "content": "", "creation_timestamp": "2026-03-27T07:20:03.625162Z"}, {"uuid": "253b9bd0-434a-4c57-87f8-e6b4f1ba1fcc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3mhfqrfmrd42b", "content": "", "creation_timestamp": "2026-03-19T10:03:39.798169Z"}, {"uuid": "521e89f2-632c-477a-ae24-16e416a655ce", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/hacker.at.thenote.app/post/3mhgjpzyn5k23", "content": "", "creation_timestamp": "2026-03-19T17:30:18.400421Z"}, {"uuid": "68265745-4b58-4a66-b866-779db97b3157", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3mhjyatr7vo2w", "content": "", "creation_timestamp": "2026-03-21T02:28:13.173162Z"}, {"uuid": "3a99b02b-c326-4244-ba91-aecb17a74a6d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3mhwkmxcob62m", "content": "", "creation_timestamp": "2026-03-26T02:29:06.496069Z"}, {"uuid": "25de3dd0-a90e-4525-be0c-2b8ff0acc816", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/hacker.at.thenote.app/post/3mhhpas4gys23", "content": "", "creation_timestamp": "2026-03-20T04:41:48.329238Z"}, {"uuid": "21ec244d-329e-46da-b047-c7c876f5c282", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/undercode.bsky.social/post/3mhxijja6jy2i", "content": "", "creation_timestamp": "2026-03-26T11:24:00.951677Z"}, {"uuid": "4cbcf1af-72f0-46db-a487-cf054fddcb15", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/clankussy.abu.guru/post/3mhhndqz2bn2i", "content": "", "creation_timestamp": "2026-03-20T04:07:40.159344Z"}, {"uuid": "f9b371b9-3530-427c-b8ce-eba63a8fbe32", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/undercode.bsky.social/post/3mhwvfq4azg2d", "content": "", "creation_timestamp": "2026-03-26T05:41:52.716465Z"}, {"uuid": "c82921d5-7098-42c9-a637-b0a38a1086f1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/pigondrugs.bsky.social/post/3mhgsktznmw2m", "content": "", "creation_timestamp": "2026-03-19T20:08:27.638222Z"}, {"uuid": "20db0b79-3b23-4434-826f-9f7afdd3b489", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3mhmiqpnt4l2b", "content": "", "creation_timestamp": "2026-03-22T02:28:44.938145Z"}, {"uuid": "e5f5f6b4-79ac-4c31-8eae-0fe5dabc18d9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/kotosecurity.bsky.social/post/3mhxy6toj272n", "content": "", "creation_timestamp": "2026-03-26T16:04:22.026119Z"}, {"uuid": "28a54d62-e376-4fb0-9a16-68b50442cf48", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://www.darkreading.com/threat-intelligence/interlock-ransomware-targets-cisco-enterprise-firewalls", "content": "", "creation_timestamp": "2026-03-21T03:00:04.000000Z"}, {"uuid": "1491bcf7-1438-4ff7-9d99-e7e1c60e9a95", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-20131", "type": "seen", "source": "https://mastodon.social/ap/users/115426718704364579/statuses/116296240279013939", "content": "", "creation_timestamp": "2026-03-26T15:43:19.760284Z"}, {"uuid": "e919c23a-6654-4557-8513-886f55340ef8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/netsecio.bsky.social/post/3mhxwzqyfws2f", "content": "", "creation_timestamp": "2026-03-26T15:43:37.966121Z"}, {"uuid": "793681e5-4f01-4529-a8b3-ea1f75d33deb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-20131", "type": "seen", "source": "https://infosec.exchange/users/technadu/statuses/116255613831208088", "content": "", "creation_timestamp": "2026-03-19T11:31:31.067129Z"}, {"uuid": "c6dd8132-3ce7-4ac8-9299-0dc381cb7445", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-20131", "type": "seen", "source": "https://bsky.app/profile/ahmandonk.bsky.social/post/3mhmrsu7sxv2k", "content": "", "creation_timestamp": "2026-03-22T05:11:00.589745Z"}, {"uuid": "87351682-0cc8-4d3e-b728-15f25e566453", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/technadu.com/post/3mhfvs3tdok2e", "content": "", "creation_timestamp": "2026-03-19T11:33:38.856544Z"}, {"uuid": "43f13f46-2554-4f3a-9d7a-be306f17ffd1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/technadu.com/post/3mhfvsc7lss2e", "content": "", "creation_timestamp": "2026-03-19T11:33:40.512179Z"}, {"uuid": "991ad4f5-36a7-4f87-84af-3753b538bfee", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "af0120d0-3dac-4a6a-974b-a9f33d2a9846", "vulnerability": "CVE-2026-20131", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/cbb95215-81ac-4469-9422-ad5ef878543e", "content": "", "creation_timestamp": "2026-03-19T17:00:02.217723Z"}, {"uuid": "b6adeb46-2f57-46dc-bbf0-1a51713e8673", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/hakksaww.bsky.social/post/3mhdvcxpiwz2v", "content": "", "creation_timestamp": "2026-03-18T16:19:44.620367Z"}, {"uuid": "17b5de07-07c5-4c5b-9d43-0eda2c5f8052", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-20131", "type": "seen", "source": "https://infosec.exchange/users/patrickcmiller/statuses/116255655255694770", "content": "", "creation_timestamp": "2026-03-19T11:42:01.610644Z"}, {"uuid": "580b6559-9976-4310-9058-54d8632e26d8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/patrickcmiller.bsky.social/post/3mhfwbcrh7y2u", "content": "", "creation_timestamp": "2026-03-19T11:42:06.556018Z"}, {"uuid": "c6b20e91-6b09-4d88-a3f2-26ead9fec3e1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/firstpasslab.bsky.social/post/3mhkhiohaa32s", "content": "", "creation_timestamp": "2026-03-21T07:01:04.268281Z"}, {"uuid": "19717e07-7e90-4cb0-b0fa-c42b0cfee5b1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/ninjaowl.ai/post/3mhdvfbpy632l", "content": "", "creation_timestamp": "2026-03-18T16:21:06.269731Z"}, {"uuid": "2900c850-eabe-4d25-9ba2-704c5c54e91b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/allaboutsecurity.bsky.social/post/3mhfxx5v6cs2n", "content": "", "creation_timestamp": "2026-03-19T12:12:13.402311Z"}, {"uuid": "09759759-ca9a-4c09-bc96-7c18e8c6e796", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/infosecbriefly.bsky.social/post/3mhdvk74qvk2s", "content": "", "creation_timestamp": "2026-03-18T16:23:47.223432Z"}, {"uuid": "b4c2860e-3d80-4ab3-82a1-8811ad2e6df5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-20131", "type": "seen", "source": "https://bsky.app/profile/firstpasslab.bsky.social/post/3mhkjpajhaf2q", "content": "", "creation_timestamp": "2026-03-21T07:40:30.241406Z"}, {"uuid": "f2bb9f88-338f-4a9e-a419-cfe77d45760f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3mhdvmaejme23", "content": "", "creation_timestamp": "2026-03-18T16:24:55.979653Z"}, {"uuid": "2ff537a9-6b96-4e9d-8262-abfef3a6c8e5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/allsafeus.bsky.social/post/3mhdx6wkto62o", "content": "", "creation_timestamp": "2026-03-18T16:53:17.297777Z"}, {"uuid": "d917ad69-0453-4672-b2a5-30aaa20f36a3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3mhil3h634a2h", "content": "", "creation_timestamp": "2026-03-20T12:59:53.851359Z"}, {"uuid": "824bf162-712c-4754-845a-9ab34ea7f5ce", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3mhsoqfruvc2d", "content": "", "creation_timestamp": "2026-03-24T13:31:58.688974Z"}, {"uuid": "bf0e0cf7-3a0a-4184-a7a8-e8b136ddfe0a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/cybersecurity0001.bsky.social/post/3mhdy2vhzwy22", "content": "", "creation_timestamp": "2026-03-18T17:08:55.875484Z"}, {"uuid": "cc055ce8-e196-4a0c-bb6b-3913da81a243", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3mhv6i3kul22w", "content": "", "creation_timestamp": "2026-03-25T13:19:02.850504Z"}, {"uuid": "3a508059-dfb1-4340-b13c-06d03eabce76", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/LLMs.activitypub.awakari.com.ap.brid.gy/post/3mhv6m737fad2", "content": "", "creation_timestamp": "2026-03-25T13:21:16.276638Z"}, {"uuid": "1fd23531-bee3-4364-a3e3-20fceeee92df", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3mhr5537rjld2", "content": "", "creation_timestamp": "2026-03-23T22:44:15.856944Z"}, {"uuid": "4881b378-1822-44f3-a77f-cf10ee90bb76", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://thehackernews.com/2026/03/interlock-ransomware-exploits-cisco-fmc.html", "content": "", "creation_timestamp": "2026-03-18T15:00:00.000000Z"}, {"uuid": "7320f88e-3a25-4a22-8410-3b78c3a1448d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/softfantw.eurosky.social/post/3mhdxp7nztk27", "content": "", "creation_timestamp": "2026-03-18T17:02:24.094075Z"}, {"uuid": "eb7d9ef8-ae55-4848-b063-cc3412ed651c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/infosecbriefly.bsky.social/post/3mhe2loq7lu2f", "content": "", "creation_timestamp": "2026-03-18T17:54:06.678946Z"}, {"uuid": "0b12fdc3-d89b-4487-81c0-3d4de37e2f4f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/securityrss.bsky.social/post/3mhe34y5s3t2m", "content": "", "creation_timestamp": "2026-03-18T18:03:46.231740Z"}, {"uuid": "6bcc27f2-5700-4aba-bc12-3ea7b57e9894", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3mhvapnuwsc2w", "content": "", "creation_timestamp": "2026-03-25T13:58:59.466373Z"}, {"uuid": "c69e2271-f303-4b9b-be3c-d517409c8259", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/helpnetsecurity.com/post/3mhimp5sdvk2c", "content": "", "creation_timestamp": "2026-03-20T13:28:51.873699Z"}, {"uuid": "3e85e4e2-99ca-4e56-9540-3edbf06a7ec1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/radar.bsky.social/post/3mhe4ndc2bs2y", "content": "", "creation_timestamp": "2026-03-18T18:30:49.215147Z"}, {"uuid": "870d9321-204b-43aa-9168-e5c4873327a8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3mhvbg3z4z22w", "content": "", "creation_timestamp": "2026-03-25T14:11:35.984021Z"}, {"uuid": "fabf2e6c-b340-4533-9336-0c7538496f8f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/stephen-butler.technodon.org.ap.brid.gy/post/3mhg4iqssibi2", "content": "", "creation_timestamp": "2026-03-19T13:33:37.222698Z"}, {"uuid": "89e9848e-0e6b-470c-b572-8950bd5d0a5b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://www.ncsc.nl/alerts/ernstige-kwetsbaarheden-in-cisco-secure-firewall-management-center", "content": "", "creation_timestamp": "2026-03-19T08:10:00.000000Z"}, {"uuid": "7d2be6b4-6e0f-4e71-8a76-aaed9918d13d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://advisories.ncsc.nl/advisory?id=NCSC-2026-0076", "content": "", "creation_timestamp": "2026-03-19T10:48:18.000000Z"}, {"uuid": "49df47ad-f199-4c62-aaa4-b19be9009f96", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/allsafeus.bsky.social/post/3mhg5d5qmva2l", "content": "", "creation_timestamp": "2026-03-19T13:48:20.669324Z"}, {"uuid": "1cd3e301-357b-40fd-b787-78a8e63d3646", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3mhgvmdgax22j", "content": "", "creation_timestamp": "2026-03-19T21:03:00.275850Z"}, {"uuid": "fba8524f-3841-4f97-b3a0-c38c66cd93f6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/nenyh.alive.bar.ap.brid.gy/post/3mhg6mlmppwm2", "content": "", "creation_timestamp": "2026-03-19T14:11:32.815493Z"}, {"uuid": "cbf60980-c260-4bd3-9437-068f40f29597", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://www.acn.gov.it/portale/w/risolte-vulnerabilita-in-prodotti-cisco-19", "content": "", "creation_timestamp": "2026-03-04T17:11:59.000000Z"}, {"uuid": "2ba779f6-d71b-4815-8fac-33bc1244a6b7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/hendryadrian.bsky.social/post/3mhg74fztyh22", "content": "", "creation_timestamp": "2026-03-19T14:20:22.051531Z"}, {"uuid": "32650705-9aea-4523-9f72-3bbb5bc419a1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://go.theregister.com/feed/www.theregister.com/2026/03/18/amazon_cisco_firewall_0_day_ransomware/", "content": "", "creation_timestamp": "2026-03-18T16:40:31.000000Z"}, {"uuid": "8af950c9-7044-48a5-835e-b006eff3dc4e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/hendryadrian.bsky.social/post/3mhi3horvbb23", "content": "", "creation_timestamp": "2026-03-20T08:20:24.943374Z"}, {"uuid": "f587906b-1fdc-4f32-8a10-8962b56bd04a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/bleepingcomputer.com/post/3mhisd5aaqx2y", "content": "", "creation_timestamp": "2026-03-20T15:09:28.208972Z"}, {"uuid": "457c23bb-3040-4631-a622-48294cb4b77d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-20131", "type": "seen", "source": "https://bsky.app/profile/ibm-seimless.bsky.social/post/3mhissga3m62p", "content": "", "creation_timestamp": "2026-03-20T15:18:06.202363Z"}, {"uuid": "31481d72-5134-4728-bbf9-29dad44ec141", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://www.cisa.gov/news-events/alerts/2026/03/19/cisa-adds-one-known-exploited-vulnerability-catalog", "content": "", "creation_timestamp": "2026-03-19T12:00:00.000000Z"}, {"uuid": "08b47c52-1d82-43fd-a668-7aa15d9b4c2d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/undercodenews.bsky.social/post/3mhitg5nf3j2t", "content": "", "creation_timestamp": "2026-03-20T15:29:03.390909Z"}, {"uuid": "527c9507-a938-41a3-b5fe-0caafc9ae828", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://infosec.exchange/users/edwardk/statuses/116252239833073398", "content": "", "creation_timestamp": "2026-03-18T21:13:26.120588Z"}, {"uuid": "9e95dfcf-e327-44b5-8c18-563574ca213a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/hacker.at.thenote.app/post/3mhgajzrbsk23", "content": "", "creation_timestamp": "2026-03-19T14:45:52.587026Z"}, {"uuid": "b0299ada-38a8-4425-95b8-2543ba81e2ae", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/e-kiledjian.bsky.social/post/3mhefqyxwuc2z", "content": "", "creation_timestamp": "2026-03-18T21:13:56.787823Z"}, {"uuid": "dca0a5bf-572b-4842-b965-54deaa671b28", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/thedailytechfeed.com/post/3mhgbmier5u2m", "content": "", "creation_timestamp": "2026-03-19T15:05:08.821818Z"}, {"uuid": "bf44bdda-bcd7-4240-9099-6024327e1102", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/hacker.at.thenote.app/post/3mhgb4ilmqc23", "content": "", "creation_timestamp": "2026-03-19T14:56:12.604337Z"}, {"uuid": "54039156-9be4-4831-bedc-0853393b830d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3mhu25cufb626", "content": "", "creation_timestamp": "2026-03-25T02:28:39.538744Z"}, {"uuid": "29ac7618-60aa-46ee-a6ed-f59242d6ef1f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/thedailytechfeed.com/post/3mhgbmxkfxd2i", "content": "", "creation_timestamp": "2026-03-19T15:05:24.975166Z"}, {"uuid": "ab1fd9bd-6891-4185-9010-f91265cf5a70", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/hakksaww.bsky.social/post/3mhgc5msqxq2i", "content": "", "creation_timestamp": "2026-03-19T15:14:43.572987Z"}, {"uuid": "bf6190d6-fd36-425d-91ed-f105fd53484c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3mhrjobohkc2z", "content": "", "creation_timestamp": "2026-03-24T02:28:35.567138Z"}, {"uuid": "e3428e62-883c-42f8-914f-357d321aea71", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://cyber.gc.ca/en/alerts-advisories/cisco-security-advisory-av26-197", "content": "", "creation_timestamp": "2026-03-18T18:40:07.000000Z"}, {"uuid": "7a086d09-5c3a-4a66-a696-d6642dba7b53", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://feedsin.space/feed/CISAKevBot/items/6051119", "content": "", "creation_timestamp": "2026-03-19T15:41:26.920732Z"}, {"uuid": "9b4f9379-135a-492b-bd39-6d982f9643c8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/kotosecurity.bsky.social/post/3mhym4hg4n62z", "content": "", "creation_timestamp": "2026-03-26T22:00:56.974243Z"}, {"uuid": "182cd873-ff53-4a5b-b05b-f9a3e75baf23", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3mhizdza64l2o", "content": "", "creation_timestamp": "2026-03-20T17:15:15.190143Z"}, {"uuid": "452bb6ae-ddbf-460d-9b4b-9b73f17e82c6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mhglflfr6s2e", "content": "", "creation_timestamp": "2026-03-19T18:00:14.615506Z"}, {"uuid": "b9d4b972-4246-4af0-bc1d-92581f30bc34", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://swecyb.com/ap/users/116080658609901341/statuses/116252614096584883", "content": "", "creation_timestamp": "2026-03-18T22:49:05.219832Z"}, {"uuid": "1af8bd97-0ec0-45b8-9bf2-063d5af72a98", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://threatintel.cc/2026/03/18/cisco-firewall-day-vulnerability-exploited.html", "content": "", "creation_timestamp": "2026-03-18T20:13:32.000000Z"}, {"uuid": "37254206-eef1-4bf9-bbb5-ce5e26877764", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://www.cert.se/2026/03/cert-se-veckobrev-v12.html", "content": "", "creation_timestamp": "2026-03-20T13:18:00.000000Z"}, {"uuid": "ab0e4f04-d911-4a90-b7de-5dbd0d3640a8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/tamosan.bsky.social/post/3mhep6f6ro2jq", "content": "", "creation_timestamp": "2026-03-19T00:02:29.206473Z"}, {"uuid": "9d732b42-5d24-4e72-a853-4fc248e04778", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://infosec.exchange/users/AAKL/statuses/116291079560098081", "content": "", "creation_timestamp": "2026-03-25T17:50:53.890245Z"}, {"uuid": "3b5a2e69-7f86-49ce-9108-55bd87a47b9e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/pigondrugs.bsky.social/post/3mhrpajcku62u", "content": "", "creation_timestamp": "2026-03-24T04:08:16.309732Z"}, {"uuid": "2fa3151e-886d-4915-ba9c-40ec6a6ec36f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/hendryadrian.bsky.social/post/3mhj4ykbz672n", "content": "", "creation_timestamp": "2026-03-20T18:20:23.652167Z"}, {"uuid": "37aac5f7-09be-43ec-9917-6633c4f12ed2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/cwealthsentinel.bsky.social/post/3mhjdhf4gtj2u", "content": "", "creation_timestamp": "2026-03-20T20:16:04.137801Z"}, {"uuid": "5f5fb319-bdf0-4b8f-895c-f346d892d199", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/allaboutsecurity.bsky.social/post/3mhwzro4n2k2p", "content": "", "creation_timestamp": "2026-03-26T07:00:11.356877Z"}, {"uuid": "e59732e4-2076-400b-bcc1-926d19c34b59", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/undercodenews.bsky.social/post/3mhgmnh74qc2b", "content": "", "creation_timestamp": "2026-03-19T18:22:32.338564Z"}, {"uuid": "a2c2eaea-636f-430b-9363-4ea8b09c81ce", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3mhexe6az2d2r", "content": "", "creation_timestamp": "2026-03-19T02:28:52.769189Z"}, {"uuid": "47376a52-adf4-4ec5-91f0-bf6b838fd1a7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3mhhhscnyns2r", "content": "", "creation_timestamp": "2026-03-20T02:28:26.398114Z"}, {"uuid": "2269c8fa-31b5-4974-afed-546003fe188f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/hendryadrian.bsky.social/post/3mhexywfqty2y", "content": "", "creation_timestamp": "2026-03-19T02:40:29.338955Z"}, {"uuid": "a34ca257-4054-44c7-8f3b-125f9228014c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/hendryadrian.bsky.social/post/3mhgj6d6zcv2n", "content": "", "creation_timestamp": "2026-03-19T17:20:23.590276Z"}, {"uuid": "381a6ce1-4c9e-4e0d-9357-e68df331cdae", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/kotosecurity.bsky.social/post/3mi2zoxn4y726", "content": "", "creation_timestamp": "2026-03-27T21:09:16.114766Z"}, {"uuid": "026f9c3c-57b2-452d-96ae-3c1bab9d4e9d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/potato.software/post/3mi2zoy4sx52z", "content": "", "creation_timestamp": "2026-03-27T21:09:16.890785Z"}, {"uuid": "d0198f09-7f0a-4b41-a8a0-a6234aaeeb64", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/hacker.at.thenote.app/post/3mhlfqij5u223", "content": "", "creation_timestamp": "2026-03-21T16:02:16.808392Z"}, {"uuid": "e3f0bf2f-1256-458c-b56f-b08f71e080d8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/crustytldr.bsky.social/post/3mhf6xsxgxj22", "content": "", "creation_timestamp": "2026-03-19T04:45:07.863735Z"}, {"uuid": "e976cbe4-5aca-4a8c-9e32-33a32a4035b7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3mhjg3darlm2q", "content": "", "creation_timestamp": "2026-03-20T21:03:02.466842Z"}, {"uuid": "3d81a4a9-062e-4bf8-aecb-6a870f78744a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/postgoo.bsky.social/post/3mhnm2i5ujb2k", "content": "", "creation_timestamp": "2026-03-22T13:00:33.944754Z"}, {"uuid": "66478c8e-e27e-49e8-b073-4113fb8d3620", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-20131", "type": "seen", "source": "https://bsky.app/profile/flarestart.bsky.social/post/3mhljrp6hii2s", "content": "", "creation_timestamp": "2026-03-21T17:14:32.111584Z"}, {"uuid": "5d01842f-4233-4c0e-8416-0661a14bc46f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3mi63zu4zmh2m", "content": "", "creation_timestamp": "2026-03-29T02:29:08.407321Z"}, {"uuid": "0d060ff9-4e8e-4466-93a0-903e82803ddd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/hacker.at.thenote.app/post/3mhlrrc54ak23", "content": "", "creation_timestamp": "2026-03-21T19:37:29.192157Z"}, {"uuid": "a5bd0126-c1b2-401c-9e8c-893fb3353c1e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/thedailytechfeed.com/post/3mhlknnulhv2s", "content": "", "creation_timestamp": "2026-03-21T17:30:11.343973Z"}, {"uuid": "d0c4d085-dee0-42dc-8f65-adc787f01f05", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://www.cert.se/2026/03/kritiska-sarbarheter-i-cisco-fmc-och-cisco-scc.html", "content": "", "creation_timestamp": "2026-03-05T09:05:00.000000Z"}, {"uuid": "aac9d9a7-4508-4b44-b17b-3a9d91a5e0d2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3mhz33vqhae2y", "content": "", "creation_timestamp": "2026-03-27T02:29:06.812388Z"}, {"uuid": "87c604a9-c85d-45dc-b042-ccd23198a55d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/hakksaww.bsky.social/post/3mhq5vp2nfr2n", "content": "", "creation_timestamp": "2026-03-23T13:25:20.249424Z"}, {"uuid": "ec86f8ca-475b-468c-b367-98bebc896f1c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://www.cert.se/2026/03/cert-se-veckobrev-v10.html", "content": "", "creation_timestamp": "2026-03-06T13:30:00.000000Z"}, {"uuid": "60e1f476-348b-4b2d-8cc7-568c8883d009", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/pigondrugs.bsky.social/post/3mjfo5bnyru2u", "content": "", "creation_timestamp": "2026-04-13T20:07:00.595114Z"}, {"uuid": "5069a807-82c9-4b69-b0c2-fcf02cef8299", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/infosecbriefly.bsky.social/post/3mhfnh46y7z25", "content": "", "creation_timestamp": "2026-03-19T09:04:13.786228Z"}, {"uuid": "cb21d727-8f89-46fc-8b36-10ec8e644de9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-20131", "type": "exploited", "source": "https://aws.amazon.com/blogs/security/amazon-threat-intelligence-teams-identify-interlock-ransomware-campaign-targeting-enterprise-firewalls/", "content": "", "creation_timestamp": "2026-03-17T17:00:00.000000Z"}, {"uuid": "b2dbb672-cf2b-4316-b6de-1db563e359c5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/thedailytechfeed.com/post/3mjugvzbrzo2y", "content": "", "creation_timestamp": "2026-04-19T17:07:37.447961Z"}, {"uuid": "e8001c87-616d-4c79-aa3b-9c3a3c2005da", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://ccb.belgium.be/advisories/warning-multiple-critical-vulnerabilities-several-cisco-products-including-cisco-secure", "content": "", "creation_timestamp": "2026-04-21T06:56:53.000000Z"}, {"uuid": "f29bfc9e-d735-4275-ac90-20f0e01c6242", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/79181", "content": "\ud83d\udea8 GitHub \u76d1\u63a7\u6d88\u606f\u63d0\u9192\n\n\ud83d\udea8 \u53d1\u73b0\u5173\u952e\u8bcd\uff1a #CVE-2026\n\n\ud83d\udce6 \u9879\u76ee\u540d\u79f0\uff1a Cisco-FMC-honeypot\n\ud83d\udc64 \u9879\u76ee\u4f5c\u8005\uff1a Hassan-Pouladi\n\ud83d\udee0 \u5f00\u53d1\u8bed\u8a00\uff1a Python\n\u2b50 Star\u6570\u91cf\uff1a 0  |  \ud83c\udf74 Fork\u6570\u91cf\uff1a 0\n\ud83d\udcc5 \u66f4\u65b0\u65f6\u95f4\uff1a 2026-04-07 03:50:29\n\n\ud83d\udcdd \u9879\u76ee\u63cf\u8ff0\uff1a\nOriginally a Honeypot for CVE-2026-20131\n\n\ud83d\udd17 \u70b9\u51fb\u8bbf\u95ee\u9879\u76ee\u5730\u5740", "creation_timestamp": "2026-04-07T04:00:04.000000Z"}, {"uuid": "1a0ffb18-a434-4028-9d56-c2c43dde867d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "published-proof-of-concept", "source": "Telegram/O4LcqucU1LaZaaWyFLISymaCFCoMKyIZUhNwooAElOjim-8", "content": "", "creation_timestamp": "2026-04-07T09:00:04.000000Z"}, {"uuid": "66840a06-2466-4a6e-939d-34af82468d44", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "exploited", "source": "https://t.me/TengkorakCyberCrewzz/9102", "content": "Interlock Ransomware Exploits Cisco FMC Zero-Day CVE-2026-20131 for Root Access \u2013 thehackernews.com\n\nThu, 19 Mar 2026 00:00:00", "creation_timestamp": "2026-03-18T20:03:03.000000Z"}, {"uuid": "5c8784cc-8200-4132-b76e-c33131df0db6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "exploited", "source": "https://t.me/kasperskyb2b/2113", "content": "\ud83d\ude80 \u0418\u043d\u0442\u0435\u0440\u0435\u0441\u043d\u044b\u0435 \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u043d\u0438\u044f APT \u0438 \u043d\u043e\u0432\u043e\u0441\u0442\u0438 \u0418\u0411 \u0437\u0430 \u043d\u0435\u0434\u0435\u043b\u044e\n\n\ud83d\udd06 \u0420\u0430\u0437\u0431\u043e\u0440 \u043a\u0430\u043c\u043f\u0430\u043d\u0438\u0438 \u0431\u0430\u043d\u043a\u043e\u0432\u0441\u043a\u043e\u0433\u043e \u0442\u0440\u043e\u044f\u043d\u0446\u0430 Horabot, \u043a\u043e\u0442\u043e\u0440\u0430\u044f \u043f\u043e\u0440\u0430\u0437\u0438\u043b\u0430 \u0431\u043e\u043b\u0435\u0435 5000 \u0436\u0435\u0440\u0442\u0432, \u043f\u0440\u0435\u0438\u043c\u0443\u0449\u0435\u0441\u0442\u0432\u0435\u043d\u043d\u043e \u0432 \u041c\u0435\u043a\u0441\u0438\u043a\u0435. \u0426\u0435\u043f\u043e\u0447\u043a\u0430  \u043d\u0430\u0447\u0438\u043d\u0430\u0435\u0442\u0441\u044f \u0441 \u0444\u0430\u043b\u044c\u0448\u0438\u0432\u044b\u0445 \u0441\u0442\u0440\u0430\u043d\u0438\u0446 \u043a\u0430\u043f\u0447\u0438, \u0440\u0430\u0437\u0434\u0430\u044e\u0449\u0438\u0445 \u043f\u043e\u043b\u0438\u043c\u043e\u0440\u0444\u043d\u044b\u0435 \u0437\u0430\u0433\u0440\u0443\u0437\u0447\u0438\u043a\u0438 VBScript \u0438 AutoIt. \u0424\u0438\u043d\u0430\u043b\u044c\u043d\u0430\u044f \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u0430\u044f \u043d\u0430\u0433\u0440\u0443\u0437\u043a\u0430 \u043a\u0440\u0430\u0434\u0451\u0442 \u0431\u0430\u043d\u043a\u043e\u0432\u0441\u043a\u0438\u0435 \u0443\u0447\u0435\u0442\u043d\u044b\u0435 \u0434\u0430\u043d\u043d\u044b\u0435 \u0438 \u0440\u0430\u0441\u043f\u0440\u043e\u0441\u0442\u0440\u0430\u043d\u044f\u0435\u0442\u0441\u044f \u0447\u0435\u0440\u0435\u0437 \u0441\u043a\u043e\u043c\u043f\u0440\u043e\u043c\u0435\u0442\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0435 \u0443\u0447\u0451\u0442\u043d\u044b\u0435 \u0437\u0430\u043f\u0438\u0441\u0438 \u044d\u043b\u0435\u043a\u0442\u0440\u043e\u043d\u043d\u043e\u0439 \u043f\u043e\u0447\u0442\u044b. \n\n\ud83d\udd05 \u0415\u0449\u0451 \u043e\u0434\u0438\u043d \u0431\u0430\u043d\u043a\u043e\u0432\u0441\u043a\u0438\u0439 \u0442\u0440\u043e\u044f\u043d\u0446\u0435\u0446, GoPix, \u043d\u0430\u0446\u0435\u043b\u0435\u043d \u043d\u0430 \u0444\u0438\u043d\u0430\u043d\u0441\u043e\u0432\u044b\u0435 \u0443\u0447\u0440\u0435\u0436\u0434\u0435\u043d\u0438\u044f \u0432 \u0411\u0440\u0430\u0437\u0438\u043b\u0438\u0438. \u0412\u041f\u041e \u043f\u0435\u0440\u0435\u0445\u0432\u0430\u0442\u044b\u0432\u0430\u0435\u0442 \u0442\u0440\u0430\u043d\u0437\u0430\u043a\u0446\u0438\u0438 \u043c\u0433\u043d\u043e\u0432\u0435\u043d\u043d\u044b\u0445 \u043f\u043b\u0430\u0442\u0435\u0436\u0435\u0439 Pix, \u043f\u043b\u0430\u0442\u0435\u0436\u043d\u044b\u0435 \u043f\u043e\u0440\u0443\u0447\u0435\u043d\u0438\u044f Boleto \u0438 \u043f\u0435\u0440\u0435\u0432\u043e\u0434\u044b \u043a\u0440\u0438\u043f\u0442\u043e\u0432\u0430\u043b\u044e\u0442\u044b. \u041f\u0440\u0438\u043c\u0435\u0447\u0430\u0442\u0435\u043b\u044c\u043d\u0430 \u0434\u0438\u043d\u0430\u043c\u0438\u0447\u043d\u0430\u044f \u0438\u043d\u0444\u0440\u0430\u0441\u0442\u0440\u0443\u043a\u0442\u0443\u0440\u0430 C2, \u0441\u0435\u0440\u0432\u0435\u0440\u044b \u0432  \u043a\u043e\u0442\u043e\u0440\u043e\u0439 \u0441\u0443\u0449\u0435\u0441\u0442\u0432\u0443\u044e\u0442 \u0432\u0441\u0435\u0433\u043e \u043d\u0435\u0441\u043a\u043e\u043b\u044c\u043a\u043e \u0447\u0430\u0441\u043e\u0432. \n\n\ud83d\ude08 \u0420\u0430\u0437\u0431\u043e\u0440 \u0438\u043d\u0444\u043e\u0441\u0442\u0438\u043b\u0435\u0440\u0430 Speagle, \u0438\u043d\u0442\u0435\u0440\u0435\u0441\u043d\u043e\u0433\u043e \u043d\u0435\u043e\u0431\u044b\u0447\u043d\u044b\u043c \u043a\u0430\u043d\u0430\u043b\u043e\u043c \u0438\u0437\u0432\u043b\u0435\u0447\u0435\u043d\u0438\u044f \u0434\u0430\u043d\u043d\u044b\u0445 \u2014 \u043e\u043d \u0437\u043b\u043e\u0443\u043f\u043e\u0442\u0440\u0435\u0431\u043b\u044f\u0435\u0442 \u043b\u0435\u0433\u0438\u0442\u0438\u043c\u043d\u044b\u043c  \u0441\u0435\u0440\u0432\u0438\u0441\u043e\u043c \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0433\u043e \u0445\u0440\u0430\u043d\u0435\u043d\u0438\u044f \u0434\u043e\u043a\u0443\u043c\u0435\u043d\u0442\u043e\u0432 Cobra DocGuard. \u041e\u0434\u0438\u043d \u0438\u0437 \u0432\u0430\u0440\u0438\u0430\u043d\u0442\u043e\u0432 \u0412\u041f\u041e \u0431\u044b\u043b \u043d\u0430\u0441\u0442\u0440\u043e\u0435\u043d \u043d\u0430 \u043f\u043e\u0438\u0441\u043a  \u0434\u043e\u043a\u0443\u043c\u0435\u043d\u0442\u043e\u0432, \u0441\u0432\u044f\u0437\u0430\u043d\u043d\u044b\u0445 \u0441 \u043a\u0438\u0442\u0430\u0439\u0441\u043a\u043e\u0439 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043e\u0439 \u0431\u0430\u043b\u043b\u0438\u0441\u0442\u0438\u0447\u0435\u0441\u043a\u0438\u0445 \u0440\u0430\u043a\u0435\u0442. \n\n\ud83e\ude9f \u0422\u0435\u0445\u043d\u0438\u0447\u0435\u0441\u043a\u0438\u0439 \u0430\u043d\u0430\u043b\u0438\u0437 SILENTCONNECT. \u042d\u0442\u043e \u0440\u0430\u043d\u0435\u0435 \u043d\u0435\u0438\u0437\u0432\u0435\u0441\u0442\u043d\u044b\u0439 .NET \u0437\u0430\u0433\u0440\u0443\u0437\u0447\u0438\u043a, \u043a\u043e\u0442\u043e\u0440\u044b\u0439 \u043f\u0440\u0438\u0432\u043e\u0434\u0438\u0442 \u043a \u0443\u0441\u0442\u0430\u043d\u043e\u0432\u043a\u0435 \u0438\u043d\u0441\u0442\u0440\u0443\u043c\u0435\u043d\u0442\u0430 \u0443\u0434\u0430\u043b\u0451\u043d\u043d\u043e\u0433\u043e \u0434\u043e\u0441\u0442\u0443\u043f\u0430 ScreenConnect. \u0417\u0430\u0433\u0440\u0443\u0437\u0447\u0438\u043a \u043e\u0431\u0445\u043e\u0434\u0438\u0442 UAC \u0441 \u043f\u043e\u043c\u043e\u0449\u044c\u044e \u0438\u0437\u0432\u0435\u0441\u0442\u043d\u043e\u0439 \u0442\u0435\u0445\u043d\u0438\u043a\u0438 \u043d\u0430 \u0431\u0430\u0437\u0435 COM-\u043e\u0431\u044a\u0435\u043a\u0442\u0430 CMSTPLUA \u0438 \u0434\u043e\u0431\u0430\u0432\u043b\u044f\u0435\u0442 \u0438\u0441\u043a\u043b\u044e\u0447\u0435\u043d\u0438\u044f \u0432 Windows Defender.\n\n\ud83d\udfe2\u0418\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0438 NTT \u0437\u0430\u0434\u043e\u043a\u0443\u043c\u0435\u043d\u0442\u0438\u0440\u043e\u0432\u0430\u043b\u0438 StoatWaffle, \u043d\u043e\u0432\u043e\u0435 \u0412\u041f\u041e \u043d\u0430 \u0431\u0430\u0437\u0435 Node.js, \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u043c\u043e\u0435 \u0433\u0440\u0443\u043f\u043f\u043e\u0439 WaterPlum Team 8 \u043a\u0430\u043a \u0447\u0430\u0441\u0442\u044c \u043a\u0430\u043c\u043f\u0430\u043d\u0438\u0438 Contagious Interview. \u0415\u0433\u043e \u0440\u0430\u0441\u043f\u0440\u043e\u0441\u0442\u0440\u0430\u043d\u044f\u044e\u0442 \u0447\u0435\u0440\u0435\u0437 \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u044b\u0439 \u0440\u0435\u043f\u043e\u0437\u0438\u0442\u043e\u0440\u0438\u0439 GitHub \u0431\u043b\u043e\u043a\u0447\u0435\u0439\u043d-\u0442\u0435\u043c\u0430\u0442\u0438\u043a\u0438, \u043a\u043e\u0442\u043e\u0440\u044b\u0439 \u0432\u044b\u043f\u043e\u043b\u043d\u044f\u0435\u0442 \u043a\u043e\u0434 \u043f\u0440\u0438 \u043e\u0442\u043a\u0440\u044b\u0442\u0438\u0438 \u0432 VSCode (\u0441\u043f\u0430\u0441\u0438\u0431\u043e \u0444\u0430\u0439\u043b\u0443 tasks.json). StoatWaffle \u0432\u043a\u043b\u044e\u0447\u0430\u0435\u0442 \u043c\u043e\u0434\u0443\u043b\u044c \u043a\u0440\u0430\u0436\u0438 \u0434\u0430\u043d\u043d\u044b\u0445 \u0438 \u0434\u0438\u0441\u0442\u0430\u043d\u0446\u0438\u043e\u043d\u043d\u043e\u0433\u043e \u0443\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f. \n\n\ud83d\udfe2\u0413\u0440\u0443\u043f\u043f\u0430 Head Mare \u043d\u0430\u0446\u0435\u043b\u0438\u043b\u0430\u0441\u044c \u043d\u0430 \u043e\u0431\u0440\u0430\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u044c\u043d\u044b\u0435, \u043d\u0430\u0443\u0447\u043d\u044b\u0435 \u0438 \u044d\u043d\u0435\u0440\u0433\u0435\u0442\u0438\u0447\u0435\u0441\u043a\u0438\u0435 \u043e\u0440\u0433\u0430\u043d\u0438\u0437\u0430\u0446\u0438\u0438 \u0432 \u0420\u043e\u0441\u0441\u0438\u0438. \u041d\u043e\u0432\u044b\u0439 \u0431\u044d\u043a\u0434\u043e\u0440   PhantomPxPigeon \u0440\u0430\u0441\u043f\u0440\u043e\u0441\u0442\u0440\u0430\u043d\u044f\u044e\u0442 \u0447\u0435\u0440\u0435\u0437 \u0442\u0440\u043e\u044f\u043d\u0438\u0437\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0435 \u0443\u0441\u0442\u0430\u043d\u043e\u0432\u0449\u0438\u043a\u0438 \u043a\u043b\u0438\u0435\u043d\u0442\u0430 \u0434\u043b\u044f \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u044b \u0432\u0438\u0434\u0435\u043e\u043a\u043e\u043d\u0444\u0435\u0440\u0435\u043d\u0446\u0438\u0439 TrueConf, \u043d\u0435\u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u0438\u0437 \u043a\u043e\u0442\u043e\u0440\u044b\u0445 \u043b\u0435\u0436\u0430\u0442 \u043d\u0430 \u0441\u043a\u043e\u043c\u043f\u0440\u043e\u043c\u0435\u0442\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0445 \u0441\u0435\u0440\u0432\u0435\u0440\u0430\u0445 TrueConf \u0432 \u043e\u0440\u0433\u0430\u043d\u0438\u0437\u0430\u0446\u0438\u044f\u0445.\n\n\ud83d\udfe3\u041d\u043e\u0432\u0430\u044f \u0432\u0435\u0440\u0441\u0438\u044f VoidStealer \u2014 \u043f\u0435\u0440\u0432\u0430\u044f, \u0432 \u043a\u043e\u0442\u043e\u0440\u043e\u0439 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0438 \u043f\u0440\u0435\u043e\u0434\u043e\u043b\u0435\u043b\u0438 \u0448\u0438\u0444\u0440\u043e\u0432\u0430\u043d\u0438\u0435 \u0444\u0430\u0439\u043b\u043e\u0432 \u043a\u0443\u043a\u0438 \u0432 Chrome, \u0438\u0437\u0432\u043b\u0435\u043a\u0430\u044f \u043a\u043b\u044e\u0447\u0438 \u0448\u0438\u0444\u0440\u043e\u0432\u0430\u043d\u0438\u044f \u0431\u0440\u0430\u0443\u0437\u0435\u0440\u0430 \u0438 \u043e\u0431\u0445\u043e\u0434\u044f \u0437\u0430\u0449\u0438\u0442\u0443 App-Bound Encryption. \n\n\ud83d\udd35\u041e\u0431\u0437\u043e\u0440 \u0431\u043e\u043b\u0435\u0435 80 \u0438\u043d\u0441\u0442\u0440\u0443\u043c\u0435\u043d\u0442\u043e\u0432 \u043f\u043e\u0434\u0430\u0432\u043b\u0435\u043d\u0438\u044f EDR, \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u043c\u044b\u0445 \u0432\u044b\u043c\u043e\u0433\u0430\u0442\u0435\u043b\u044f\u043c\u0438 \u0438 \u0434\u0440\u0443\u0433\u0438\u043c\u0438 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0430\u043c\u0438. \u00ab\u041f\u0430\u0440\u0442\u043d\u0451\u0440\u044b\u00bb \u0440\u0430\u0437\u043b\u0438\u0447\u043d\u044b\u0445 RaaS \u0432\u044b\u0431\u0438\u0440\u0430\u044e\u0442 \u0441\u0432\u043e\u0438 \u0438\u043d\u0441\u0442\u0440\u0443\u043c\u0435\u043d\u0442\u044b \u043d\u0435\u0437\u0430\u0432\u0438\u0441\u0438\u043c\u043e, \u043f\u043e\u044d\u0442\u043e\u043c\u0443 \u00ab\u043a\u0438\u043b\u043b\u0435\u0440\u044b\u00bb \u0441\u043b\u043e\u0436\u043d\u043e \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u044c \u0434\u043b\u044f \u0430\u0442\u0440\u0438\u0431\u0443\u0446\u0438\u0438 \u043a\u043e\u043d\u043a\u0440\u0435\u0442\u043d\u044b\u0445 \u0430\u0442\u0430\u043a, \u0430 \u043f\u043e\u0434\u0445\u043e\u0434\u044b \u0432\u0430\u0440\u044c\u0438\u0440\u0443\u044e\u0442\u0441\u044f \u043e\u0442 BYOVD \u0434\u043e \u0441\u0430\u043c\u043e\u043f\u0438\u0441\u043d\u044b\u0445 \u0441\u0446\u0435\u043d\u0430\u0440\u0438\u0435\u0432 \u0438 \u0443\u0442\u0438\u043b\u0438\u0442 \u043f\u043e \u0431\u043e\u0440\u044c\u0431\u0435 \u0441 \u0440\u0443\u0442\u043a\u0438\u0442\u0430\u043c\u0438.\n\n\u26aa\ufe0f\u041f\u043e\u043f\u0443\u043b\u044f\u0440\u043d\u044b\u0439 \u0441\u043a\u0430\u043d\u0435\u0440 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439 Trivy \u0431\u044b\u043b \u043f\u043e\u0432\u0442\u043e\u0440\u043d\u043e \u0441\u043a\u043e\u043c\u043f\u0440\u043e\u043c\u0435\u0442\u0438\u0440\u043e\u0432\u0430\u043d \u0432 \u0440\u0435\u0437\u0443\u043b\u044c\u0442\u0430\u0442\u0435 \u0430\u0442\u0430\u043a\u0438 \u043d\u0430 \u0446\u0435\u043f\u043e\u0447\u043a\u0443 \u043f\u043e\u0441\u0442\u0430\u0432\u043e\u043a. \u0413\u0440\u0443\u043f\u043f\u0430  TeamPCP \u00ab\u0443\u0433\u043d\u0430\u043b\u0430\u00bb \u043f\u0440\u043e\u0446\u0435\u0441\u0441 \u0441\u0431\u043e\u0440\u043a\u0438 \u043f\u0440\u043e\u0435\u043a\u0442\u0430 \u043d\u0430 GitHub, \u0432\u0441\u0442\u0440\u043e\u0438\u043b\u0430 \u0431\u044d\u043a\u0434\u043e\u0440 \u0432 \u0432\u0435\u0440\u0441\u0438\u044e 0.69.4 \u0438 \u043f\u0440\u0438\u043d\u0443\u0434\u0438\u0442\u0435\u043b\u044c\u043d\u043e \u043e\u0431\u043d\u043e\u0432\u0438\u043b\u0430 75 \u0438\u0437 76 \u0442\u0435\u0433\u043e\u0432 \u0432\u0435\u0440\u0441\u0438\u0439 \u0432 \u0440\u0435\u043f\u043e\u0437\u0438\u0442\u043e\u0440\u0438\u0438 trivy-action, \u0447\u0442\u043e\u0431\u044b \u0443\u043a\u0430\u0437\u0430\u0442\u044c \u043d\u0430 \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u044b\u0435 \u043a\u043e\u043c\u043c\u0438\u0442\u044b. \u041b\u044e\u0431\u043e\u0439 \u0440\u0430\u0431\u043e\u0447\u0438\u0439 \u043f\u0440\u043e\u0446\u0435\u0441\u0441 CI/CD, \u0441\u0441\u044b\u043b\u0430\u044e\u0449\u0438\u0439\u0441\u044f \u043d\u0430 \u044d\u0442\u0438 \u0442\u0435\u0433\u0438, \u0438\u043d\u0441\u0442\u0430\u043b\u043b\u0438\u0440\u043e\u0432\u0430\u043b \u0436\u0435\u0440\u0442\u0432\u0430\u043c \u0438\u043d\u0444\u043e\u0441\u0442\u0438\u043b\u0435\u0440. \n\n\ud83d\udd34\u041a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0430\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-33017 (CVSS4b 9.3) \u0432 \u043f\u043e\u043f\u0443\u043b\u044f\u0440\u043d\u043e\u043c \u043a\u043e\u043d\u0441\u0442\u0440\u0443\u043a\u0442\u043e\u0440\u0435 \u0430\u0433\u0435\u043d\u0442\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0446\u0435\u0441\u0441\u043e\u0432, Langflow, \u0431\u044b\u043b\u0430 \u043f\u0440\u0435\u0434\u0430\u043d\u0430 \u043e\u0433\u043b\u0430\u0441\u043a\u0435 \u0442\u043e\u043b\u044c\u043a\u043e 17 \u043c\u0430\u0440\u0442\u0430, \u0438 \u0443\u0436\u0435 \u0441\u043f\u0443\u0441\u0442\u044f 20 \u0447\u0430\u0441\u043e\u0432 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u043e\u0432\u0430\u043b\u0430\u0441\u044c \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0430\u043c\u0438. \u041f\u0440\u0438\u0447\u0451\u043c \u044d\u0442\u043e \u043d\u0435 \u0431\u044b\u043b\u0438 \u043f\u0440\u043e\u0441\u0442\u043e \u0442\u0435\u0441\u0442\u044b, \u0441\u043f\u0443\u0441\u0442\u044f \u043d\u0435\u0441\u043a\u043e\u043b\u044c\u043a\u043e \u0447\u0430\u0441\u043e\u0432 \u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u044b\u0445 \u0441\u0435\u0440\u0432\u0435\u0440\u043e\u0432 \u0438\u0437\u0432\u043b\u0435\u043a\u0430\u043b\u0438 \u0441\u0435\u043a\u0440\u0435\u0442\u044b \u0438 \u0431\u0430\u0437\u044b \u0434\u0430\u043d\u043d\u044b\u0445.\n\n\ud83d\udfe3\u041f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u044f\u043c Magento Open Source \u0438 Adobe Commerce \u043f\u0440\u0438\u0433\u043e\u0442\u043e\u0432\u0438\u0442\u044c\u0441\u044f. \u041a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0430\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c Polyshell \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u0437\u0430\u0433\u0440\u0443\u0436\u0430\u0442\u044c \u0438\u0441\u043f\u043e\u043b\u043d\u044f\u0435\u043c\u044b\u0439 \u043a\u043e\u0434 \u043d\u0430 \u0441\u0435\u0440\u0432\u0435\u0440, \u0430 \u0432 \u0440\u044f\u0434\u0435 \u043a\u043e\u043d\u0444\u0438\u0433\u0443\u0440\u0430\u0446\u0438\u0439 \u2014 \u0435\u0449\u0451 \u0438 \u0437\u0430\u043f\u0443\u0441\u043a\u0430\u0442\u044c \u0435\u0433\u043e. Adobe \u043f\u043e\u043a\u0430 \u0443\u0441\u0442\u0440\u0430\u043d\u0438\u043b\u0430 \u0434\u0435\u0444\u0435\u043a\u0442 \u0442\u043e\u043b\u044c\u043a\u043e \u0432 \u0431\u0435\u0442\u0430-\u0432\u0435\u0440\u0441\u0438\u044f\u0445 \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u044b, \u043f\u043e\u044d\u0442\u043e\u043c\u0443 \u0432\u0441\u0435 \u043e\u0441\u043d\u043e\u0432\u043d\u044b\u0435 \u0432\u0435\u0440\u0441\u0438\u0438 \u043e\u0441\u0442\u0430\u044e\u0442\u0441\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u044b \u0438 \u0442\u0440\u0435\u0431\u0443\u044e\u0442 \u043f\u0440\u0438\u043c\u0435\u043d\u0435\u043d\u0438\u044f \u043a\u043e\u043c\u043f\u0435\u043d\u0441\u0438\u0440\u0443\u044e\u0449\u0438\u0445 \u043c\u0435\u0440, \u043e\u043f\u0438\u0441\u0430\u043d\u043d\u044b\u0445 \u0432 \u0431\u043b\u043e\u0433\u0435 Sansec.\n\n\ud83d\udfe2\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-20131 \u0432 Cisco Secure Firewall Management Center \u0441\u043e \u0441\u043a\u0440\u043e\u043c\u043d\u044b\u043c CVSS 10, \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u0443\u0435\u043c\u0430\u044f \u043a\u0430\u043a \u0437\u0438\u0440\u043e\u0434\u0435\u0439 \u0431\u0430\u043d\u0434\u043e\u0439 Interlock \u043c\u0438\u043d\u0438\u043c\u0443\u043c \u0441 \u044f\u043d\u0432\u0430\u0440\u044f, \u0443\u0434\u043e\u0441\u0442\u043e\u0438\u043b\u0430\u0441\u044c \u0441\u0440\u043e\u0447\u043d\u043e\u0439 \u0434\u0438\u0440\u0435\u043a\u0442\u0438\u0432\u044b CISA. \u0421\u0440\u043e\u043a \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044f \u0443\u0441\u0442\u0430\u043d\u043e\u0432\u043b\u0435\u043d \u0434\u043e \u0432\u0447\u0435\u0440\u0430, 22 \u043c\u0430\u0440\u0442\u0430.\n\n#\u0434\u0430\u0439\u0434\u0436\u0435\u0441\u0442 #APT @\u041f2\u0422", "creation_timestamp": "2026-03-23T07:34:51.000000Z"}, {"uuid": "b0cc8a2a-7208-4e89-bb14-0fe200c5f596", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "exploited", "source": "https://t.me/CyberSecurityIL/82690", "content": "\u05e9\u05d9\u05de\u05d5 \u05dc\u05d1 \u05dc\u05d7\u05d5\u05dc\u05e9\u05d4 (CVE-2026-20131) \u05d1\u05de\u05d5\u05e6\u05e8 Cisco's Secure Firewall Management Center (FMC) \u05d4\u05de\u05e0\u05d5\u05e6\u05dc\u05ea \u05d1\u05e4\u05d5\u05e2\u05dc \u05e2\"\u05d9 \u05e7\u05d1\u05d5\u05e6\u05d5\u05ea \u05db\u05d5\u05e4\u05e8 \u05de\u05e1\u05d1\u05d9\u05d1 \u05dc\u05e2\u05d5\u05dc\u05dd.\n\n\u05e1\u05d9\u05e1\u05e7\u05d5 \u05e4\u05e8\u05e1\u05de\u05d5 \u05ea\u05d9\u05e7\u05d5\u05df \u05d1-4.3.26 \u05d0\u05d1\u05dc \u05de\u05e1\u05ea\u05d1\u05e8 \u05db\u05d9 \u05e7\u05d1\u05d5\u05e6\u05ea \u05d4\u05db\u05d5\u05e4\u05e8 Interlock \u05de\u05e0\u05e6\u05dc\u05ea \u05d0\u05ea \u05d4\u05d7\u05d5\u05dc\u05e9\u05d4 \u05db\u05d1\u05e8 \u05de\u05d7\u05d5\u05d3\u05e9 \u05d9\u05e0\u05d5\u05d0\u05e8 26.\n\nhttps://t.me/CyberSecurityIL/8643", "creation_timestamp": "2026-03-19T12:26:46.000000Z"}, {"uuid": "eae84268-f11f-4225-abe0-b3b991c6d2c8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "exploited", "source": "Telegram/c2YdDRKHEsuNGv6ndce3dpH0nZ5Ptmi5L6OPj0o4Jymgosmm", "content": "", "creation_timestamp": "2026-03-19T09:45:04.000000Z"}, {"uuid": "19375ceb-9657-4257-ab40-1f9fa547af4e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "exploited", "source": "https://t.me/ctinow/247390", "content": "Interlock group exploiting the CISCO FMC flaw CVE-2026-20131 36 days before disclosure\nhttps://ift.tt/0ND7WTe", "creation_timestamp": "2026-03-19T09:44:36.000000Z"}, {"uuid": "3303d1b2-398f-454b-88bc-43b32be034a2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "exploited", "source": "https://t.me/true_secator/8011", "content": "\u041e\u043f\u0435\u0440\u0430\u0442\u043e\u0440\u044b Interlock \u0441 \u043a\u043e\u043d\u0446\u0430 \u044f\u043d\u0432\u0430\u0440\u044f \u043d\u0430\u0446\u0435\u043b\u0438\u043b\u0438\u0441\u044c \u043d\u0430 RCE-\u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043c\u0430\u043a\u0441\u0438\u043c\u0430\u043b\u044c\u043d\u043e\u0439 \u0441\u0442\u0435\u043f\u0435\u043d\u0438 \u0441\u0435\u0440\u044c\u0435\u0437\u043d\u043e\u0441\u0442\u0438 \u0432 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u043c \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u0438 Cisco Secure Firewall Management Center (FMC) \u0432 \u0440\u0430\u043c\u043a\u0430\u0445 \u0440\u0435\u0430\u043b\u0438\u0437\u0430\u0446\u0438\u0438 \u0441\u0435\u0440\u0438\u0438 0-day \u0430\u0442\u0430\u043a.\n\n\u0411\u0430\u043d\u0434\u0430 \u0432\u044b\u043c\u043e\u0433\u0430\u0442\u0435\u043b\u0435\u0439 Interlock\u00a0\u0432\u043f\u0435\u0440\u0432\u044b\u0435 \u043d\u0430\u0440\u0438\u0441\u043e\u0432\u0430\u043b\u0438\u0441\u044c \u0432 \u0441\u0435\u043d\u0442\u044f\u0431\u0440\u0435 2024 \u0433\u043e\u0434\u0430 \u0438 \u0431\u044b\u043b\u0430 \u0441\u0432\u044f\u0437\u0430\u043d\u0430\u00a0\u0441 \u043a\u0430\u043c\u043f\u0430\u043d\u0438\u0435\u0439 ClickFix,\u00a0\u0430 \u0442\u0430\u043a\u0436\u0435 \u0441 \u0430\u0442\u0430\u043a\u0430\u043c\u0438, \u0432 \u0445\u043e\u0434\u0435 \u043a\u043e\u0442\u043e\u0440\u044b\u0445 \u0437\u0430\u0434\u0435\u0439\u0441\u0442\u0432\u043e\u0432\u0430\u043b\u0441\u044f \u0442\u0440\u043e\u044f\u043d \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e\u0433\u043e \u0434\u043e\u0441\u0442\u0443\u043f\u0430 \u043f\u043e\u0434 \u043d\u0430\u0437\u0432\u0430\u043d\u0438\u0435\u043c NodeSnake\u00a0\u0432 \u0441\u0435\u0442\u044f\u0445 \u043d\u0435\u0441\u043a\u043e\u043b\u044c\u043a\u0438\u0445 \u0443\u043d\u0438\u0432\u0435\u0440\u0441\u0438\u0442\u0435\u0442\u043e\u0432 \u0412\u0435\u043b\u0438\u043a\u043e\u0431\u0440\u0438\u0442\u0430\u043d\u0438\u0438.\n\n\u041a\u0440\u043e\u043c \u0442\u043e\u0433\u043e, Interlock \u043f\u0440\u043e\u0432\u0435\u0440\u043d\u0443\u043b\u0430 \u0430\u0442\u0430\u043a\u0438 \u043d\u0430\u00a0DaVita, Kettering Health, \u0441\u0438\u0441\u0442\u0435\u043c\u0443 \u0422\u0435\u0445\u0430\u0441\u0441\u043a\u043e\u0433\u043e \u0442\u0435\u0445\u043d\u043e\u043b\u043e\u0433\u0438\u0447\u0435\u0441\u043a\u043e\u0433\u043e \u0443\u043d\u0438\u0432\u0435\u0440\u0441\u0438\u0442\u0435\u0442\u0430 \u0438\u00a0\u0441\u0435\u0442\u0438 \u0421\u0435\u043d\u0442-\u041f\u043e\u043b\u0430 (\u0448\u0442\u0430\u0442 \u041c\u0438\u043d\u043d\u0435\u0441\u043e\u0442\u0430, \u0421\u0428\u0410).\n\n\u041d\u0435\u0434\u0430\u0432\u043d\u043e\u00a0\u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0438 IBM X-Force \u043f\u0440\u0435\u0434\u0443\u043f\u0440\u0435\u0436\u0434\u0430\u043b\u0438, \u0447\u0442\u043e \u043e\u043f\u0435\u0440\u0430\u0442\u043e\u0440\u044b Interlock \u043f\u0440\u0438\u0441\u0442\u0443\u043f\u0438\u043b\u0438 \u043a \u0440\u0430\u0437\u0432\u0435\u0440\u0442\u044b\u0432\u0430\u043d\u0438\u044e \u043d\u043e\u0432\u043e\u0433\u043e \u0448\u0442\u0430\u043c\u043c\u0430 \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u043e\u0433\u043e \u041f\u041e \u043f\u043e\u0434 \u043d\u0430\u0437\u0432\u0430\u043d\u0438\u0435\u043c Slopoly, \u043f\u0440\u0435\u0434\u043f\u043e\u043b\u043e\u0436\u0438\u0442\u0435\u043b\u044c\u043d\u043e, \u0440\u0430\u0437\u0440\u0430\u0431\u043e\u0442\u0430\u043d\u043d\u043e\u0433\u043e \u0441 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435\u043c \u0438\u043d\u0441\u0442\u0440\u0443\u043c\u0435\u043d\u0442\u043e\u0432 \u0433\u0435\u043d\u0435\u0440\u0430\u0442\u0438\u0432\u043d\u043e\u0433\u043e \u0418\u0418.\n\n\u0412\u043e\u0437\u0432\u0440\u0430\u0449\u0430\u044f\u0441\u044c \u043a Cisco, \u0443\u043f\u043e\u043c\u044f\u043d\u0443\u0442\u0430\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043e\u0442\u0441\u043b\u0435\u0436\u0438\u0432\u0430\u0435\u0442\u0441\u044f \u043a\u0430\u043a CVE-2026-20131 \u0438 \u0431\u044b\u043b\u0430 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0430 4 \u043c\u0430\u0440\u0442\u0430. \u041e\u043d\u0430 \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u043d\u0435\u0430\u0432\u0442\u043e\u0440\u0438\u0437\u043e\u0432\u0430\u043d\u043d\u044b\u043c \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0430\u043c \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e \u0432\u044b\u043f\u043e\u043b\u043d\u044f\u0442\u044c \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u044b\u0439 \u043a\u043e\u0434 Java \u0441 \u043f\u0440\u0430\u0432\u0430\u043c\u0438 root \u043d\u0430 \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432\u0430\u0445 \u0431\u0435\u0437 \u0443\u0441\u0442\u0430\u043d\u043e\u0432\u043b\u0435\u043d\u043d\u044b\u0445 \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u0439.\n\n\u0412 \u0441\u0432\u043e\u044e \u043e\u0447\u0435\u0440\u0435\u0434\u044c, \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0438 Amazon \u0443\u0441\u0442\u0430\u043d\u043e\u0432\u0438\u043b\u0438, \u0447\u0442\u043e \u043e\u043f\u0435\u0440\u0430\u0442\u043e\u0440\u044b Interlock \u0431\u043e\u043b\u0435\u0435 \u043c\u0435\u0441\u044f\u0446\u0430 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043b\u0430 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c Secure FMC \u0432 \u0430\u0442\u0430\u043a\u0430\u0445 \u043d\u0430 \u043a\u043e\u0440\u043f\u043e\u0440\u0430\u0442\u0438\u0432\u043d\u044b\u0435 \u043c\u0435\u0436\u0441\u0435\u0442\u0435\u0432\u044b\u0435 \u044d\u043a\u0440\u0430\u043d\u044b, \u043f\u0440\u0435\u0436\u0434\u0435 \u0447\u0435\u043c \u043e\u043d\u0430 \u0431\u044b\u043b\u0430 \u0440\u0430\u0441\u043a\u0440\u044b\u0442\u0430 \u0438 \u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0430, \u043d\u0430\u0447\u0438\u043d\u0430\u044f \u0441 26 \u044f\u043d\u0432\u0430\u0440\u044f 2026 \u0433\u043e\u0434\u0430.\n\n\u042d\u0442\u043e \u0431\u044b\u043b\u0430 \u043d\u0435 \u043f\u0440\u043e\u0441\u0442\u043e \u043e\u0447\u0435\u0440\u0435\u0434\u043d\u0430\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c, \u0434\u043b\u044f Interlock \u044d\u0442\u043e \u0431\u044b\u043b\u0430 0-day, \u0447\u0442\u043e \u0434\u0430\u0432\u0430\u043b\u043e \u0438\u043c \u043d\u0435\u0434\u0435\u043b\u044c\u043d\u0443\u044e \u0444\u043e\u0440\u0443 \u0434\u043b\u044f \u043a\u043e\u043c\u043f\u0440\u043e\u043c\u0435\u0442\u0430\u0446\u0438\u0438 \u043e\u0440\u0433\u0430\u043d\u0438\u0437\u0430\u0446\u0438\u0439 \u0435\u0449\u0435 \u0434\u043e \u0442\u043e\u0433\u043e, \u043a\u0430\u043a \u0441\u043f\u0435\u0446\u0438\u0430\u043b\u0438\u0441\u0442\u044b \u043f\u043e \u0437\u0430\u0449\u0438\u0442\u0435 \u0443\u0441\u043f\u0435\u043b\u0438 \u0447\u0442\u043e-\u043b\u0438\u0431\u043e \u043f\u0440\u043e\u0432\u0435\u0440\u0438\u0442\u044c.\n\n4 \u043c\u0430\u0440\u0442\u0430 2026 \u0433\u043e\u0434\u0430 Cisco \u0432\u044b\u043f\u0443\u0441\u0442\u0438\u043b\u0430 \u0443\u0432\u0435\u0434\u043e\u043c\u043b\u0435\u043d\u0438\u0435 \u043f\u043e \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438, \u0432 \u043a\u043e\u0442\u043e\u0440\u043e\u043c \u0441\u043e\u043e\u0431\u0449\u0430\u043b\u043e\u0441\u044c \u043e\u0431 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0432 \u0432\u0435\u0431-\u0438\u043d\u0442\u0435\u0440\u0444\u0435\u0439\u0441\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f Cisco Secure Firewall Management Center, \u0432 \u043a\u043e\u0442\u043e\u0440\u043e\u043c \u043f\u043e\u0441\u0442\u0430\u0432\u0449\u0438\u043a \u043f\u0440\u0435\u0434\u0441\u0442\u0430\u0432\u0438\u043b \u0441\u0430\u043c\u0443\u044e \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u044e\u044e \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044e.\n\n\u0412 \u043a\u043e\u043c\u043f\u0430\u043d\u0438\u0438 \u043d\u0430\u0441\u0442\u043e\u044f\u0442\u0435\u043b\u044c\u043d\u043e \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0443\u044e\u0442 \u043a\u043b\u0438\u0435\u043d\u0442\u0430\u043c \u043a\u0430\u043a \u043c\u043e\u0436\u043d\u043e \u0441\u043a\u043e\u0440\u0435\u0435 \u043e\u0431\u043d\u043e\u0432\u0438\u0442\u044c \u041f\u041e \u0438 \u043e\u0431\u0440\u0430\u0442\u0438\u0442\u044c\u0441\u044f \u043a \u0443\u0432\u0435\u0434\u043e\u043c\u043b\u0435\u043d\u0438\u044e \u0434\u043b\u044f \u043f\u043e\u043b\u0443\u0447\u0435\u043d\u0438\u044f \u0431\u043e\u043b\u0435\u0435 \u043f\u043e\u0434\u0440\u043e\u0431\u043d\u043e\u0439 \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u0438 \u0438 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0439.\n\n\u0421 \u043d\u0430\u0447\u0430\u043b\u0430 \u0433\u043e\u0434\u0430 \u0432 \u043b\u0438\u043d\u0435\u0439\u043a\u0435 \u0432\u043e\u0441\u0442\u0440\u0435\u0431\u043e\u0432\u0430\u043d\u043d\u044b\u0445 \u043a\u0438\u0431\u0435\u0440\u043f\u043e\u0434\u043f\u043e\u043b\u044c\u0435\u043c \u0440\u0435\u0448\u0435\u043d\u0438\u0439 Cisco \u0440\u0430\u0441\u043f\u043e\u043b\u043e\u0436\u0438\u043b\u0438\u0441\u044c Cisco AsyncOS (\u0441 \u043d\u043e\u044f\u0431\u0440\u044f 0-day \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043b\u0430\u0441\u044c \u0434\u043b\u044f \u0432\u0437\u043b\u043e\u043c\u0430 \u0437\u0430\u0449\u0438\u0449\u0435\u043d\u043d\u044b\u0445 \u043f\u043e\u0447\u0442\u043e\u0432\u044b\u0445 \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432), Unified Communications (\u044f\u043d\u0432\u0430\u0440\u0441\u043a\u0430\u044f \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0430\u044f RCE \u043f\u0440\u0438\u043c\u0435\u043d\u044f\u043b\u0430\u0441\u044c \u0432 0-day \u0430\u0442\u0430\u043a\u0430\u0445), Catalyst SD-WAN (\u0444\u0435\u0432\u0440\u0430\u043b\u044c\u0441\u043a\u0438\u0439 \u043d\u043e\u043b\u044c \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u043e\u0432\u0430\u043b\u0441\u044f \u0434\u043b\u044f \u043e\u0431\u0445\u043e\u0434\u0430 \u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u0438). \u0414\u043e\u0431\u0430\u0432\u0438\u043b\u0430\u0441\u044c Cisco Secure Firewall Management Center (FMC).", "creation_timestamp": "2026-03-19T12:58:46.000000Z"}, {"uuid": "a353f4da-de82-41de-89be-fc663317b072", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "exploited", "source": "https://t.me/TengkorakCyberCrewzz/38947", "content": "Interlock Ransomware Exploits Cisco FMC Zero-Day CVE-2026-20131 for Root Access \u2013 thehackernews.com\n\nThu, 19 Mar 2026 00:00:00", "creation_timestamp": "2026-03-18T20:03:03.000000Z"}, {"uuid": "8e232db4-d9a0-480e-a9b0-c5231bf0624d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "exploited", "source": "https://t.me/ctinow/247360", "content": "Interlock Ransomware Exploits Cisco FMC Zero-Day CVE-2026-20131 for Root Access\nhttps://ift.tt/gMlGZKu", "creation_timestamp": "2026-03-18T16:20:12.000000Z"}, {"uuid": "5cdba056-5621-4c14-8ab6-e14853437eec", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://t.me/BleepingComputer/24287", "content": "\u200aCISA orders feds to patch max-severity Cisco flaw by Sunday\n\nThe Cybersecurity and Infrastructure Security Agency (CISA) has ordered federal agencies to patch a maximum-severity vulnerability, CVE-2026-20131, in Cisco Secure Firewall Management Center (FMC) by Sunday,\u00a0March 22. [...]\n\nhttps://www.bleepingcomputer.com/news/security/cisa-orders-feds-to-patch-max-severity-cisco-flaw-by-sunday/", "creation_timestamp": "2026-03-20T16:00:23.000000Z"}, {"uuid": "b12f4a70-ad44-49d7-aa54-208ed9f0c7d2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://t.me/true_secator/7967", "content": "Cisco \u0432\u044b\u043f\u0443\u0441\u0442\u0438\u043b\u0430 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f \u0434\u043b\u044f \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044f \u0434\u0432\u0443\u0445 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439 \u043c\u0430\u043a\u0441\u0438\u043c\u0430\u043b\u044c\u043d\u043e\u0439 \u0441\u0442\u0435\u043f\u0435\u043d\u0438 \u0441\u0435\u0440\u044c\u0435\u0437\u043d\u043e\u0441\u0442\u0438 \u0432 \u0441\u0432\u043e\u0435\u043c \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u043c \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u0438 Secure Firewall Management Center (FMC).\n\nSecure FMC -\u0440\u0435\u0430\u043b\u0438\u0437\u0443\u0435\u0442 \u0432\u0435\u0431-\u0438\u043d\u0442\u0435\u0440\u0444\u0435\u0439\u0441 \u0438\u043b\u0438 \u0438\u043d\u0442\u0435\u0440\u0444\u0435\u0439\u0441 SSH, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0438\u0439 \u0430\u0434\u043c\u0438\u043d\u0438\u0441\u0442\u0440\u0430\u0442\u043e\u0440\u0430\u043c \u0443\u043f\u0440\u0430\u0432\u043b\u044f\u0442\u044c \u043c\u0435\u0436\u0441\u0435\u0442\u0435\u0432\u044b\u043c\u0438 \u044d\u043a\u0440\u0430\u043d\u0430\u043c\u0438 Cisco \u0438 \u043d\u0430\u0441\u0442\u0440\u0430\u0438\u0432\u0430\u0442\u044c \u043a\u043e\u043d\u0442\u0440\u043e\u043b\u044c \u043f\u0440\u0438\u043b\u043e\u0436\u0435\u043d\u0438\u0439, \u043f\u0440\u0435\u0434\u043e\u0442\u0432\u0440\u0430\u0449\u0435\u043d\u0438\u0435 \u0432\u0442\u043e\u0440\u0436\u0435\u043d\u0438\u0439, \u0444\u0438\u043b\u044c\u0442\u0440\u0430\u0446\u0438\u044e URL-\u0430\u0434\u0440\u0435\u0441\u043e\u0432 \u0438 \u0440\u0430\u0441\u0448\u0438\u0440\u0435\u043d\u043d\u0443\u044e \u0437\u0430\u0449\u0438\u0442\u0443 \u043e\u0442 \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u044b\u0445 \u041f\u041e.\n\n\u041e\u0431\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043c\u043e\u0433\u0443\u0442 \u0431\u044b\u0442\u044c \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u044b \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e \u043d\u0435\u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u0446\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u043c\u0438 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0430\u043c\u0438.\n\n\u041f\u0440\u0438 \u044d\u0442\u043e\u043c \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043e\u0431\u0445\u043e\u0434\u0430 \u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u0438 (CVE-2026-20079) \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0430\u043c \u043f\u043e\u043b\u0443\u0447\u0438\u0442\u044c root-\u0434\u043e\u0441\u0442\u0443\u043f \u043a \u0431\u0430\u0437\u043e\u0432\u043e\u0439 \u041e\u0421, \u0430 \u0434\u0440\u0443\u0433\u0430\u044f CVE-2026-20131 \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u0432\u044b\u043f\u043e\u043b\u043d\u044f\u0442\u044c \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u044b\u0439 \u043a\u043e\u0434 Java \u0441 \u043f\u0440\u0430\u0432\u0430\u043c\u0438 root \u043d\u0430 \u043d\u0435\u0437\u0430\u0449\u0438\u0449\u0435\u043d\u043d\u044b\u0445 \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432\u0430\u0445.\n\n\u0417\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a \u043c\u043e\u0436\u0435\u0442 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u044c \u044d\u0442\u0443 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c, \u043e\u0442\u043f\u0440\u0430\u0432\u043b\u044f\u044f \u0441\u043f\u0435\u0446\u0438\u0430\u043b\u044c\u043d\u043e \u0441\u0444\u043e\u0440\u043c\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0435 HTTP-\u0437\u0430\u043f\u0440\u043e\u0441\u044b \u043d\u0430 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0435 \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432\u043e.\n\n\u041f\u043e \u0447\u0430\u0441\u0442\u0438 CVE-2026-20079 \u0443\u0441\u043f\u0435\u0448\u043d\u0430\u044f \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u043c\u043e\u0436\u0435\u0442 \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u0442\u044c \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0443 \u0432\u044b\u043f\u043e\u043b\u043d\u0438\u0442\u044c \u0440\u0430\u0437\u043b\u0438\u0447\u043d\u044b\u0435 \u0441\u043a\u0440\u0438\u043f\u0442\u044b \u0438 \u043a\u043e\u043c\u0430\u043d\u0434\u044b, \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0438\u0432\u0430\u044e\u0449\u0438\u0435 \u043f\u043e\u043b\u0443\u0447\u0435\u043d\u0438\u0435 root-\u043f\u0440\u0430\u0432 \u043d\u0430 \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432\u0435.\n\n\u0417\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a \u043c\u043e\u0436\u0435\u0442 \u0440\u0435\u0430\u043b\u0438\u0437\u043e\u0432\u0430\u0442\u044c \u0435\u0435, \u043e\u0442\u043f\u0440\u0430\u0432\u0438\u0432 \u0441\u043f\u0435\u0446\u0438\u0430\u043b\u044c\u043d\u043e \u0441\u043e\u0437\u0434\u0430\u043d\u043d\u044b\u0439 \u0441\u0435\u0440\u0438\u0430\u043b\u0438\u0437\u043e\u0432\u0430\u043d\u043d\u044b\u0439 Java-\u043e\u0431\u044a\u0435\u043a\u0442 \u0432 \u0432\u0435\u0431-\u0438\u043d\u0442\u0435\u0440\u0444\u0435\u0439\u0441 \u0443\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0433\u043e \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432\u0430. \u0423\u0441\u043f\u0435\u0448\u043d\u0430\u044f \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u043c\u043e\u0436\u0435\u0442 \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u0442\u044c \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0443 \u0432\u044b\u043f\u043e\u043b\u043d\u0438\u0442\u044c \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u044b\u0439 \u043a\u043e\u0434 \u043d\u0430 \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432\u0435 \u0438 \u043f\u043e\u0432\u044b\u0441\u0438\u0442\u044c \u043f\u0440\u0438\u0432\u0438\u043b\u0435\u0433\u0438\u0438 \u0434\u043e \u0443\u0440\u043e\u0432\u043d\u044f root.\n\n\u041e\u0431\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0437\u0430\u0442\u0440\u0430\u0433\u0438\u0432\u0430\u044e\u0442 Cisco Secure FMC, \u043d\u043e CVE-2026-20131 \u0442\u0430\u043a\u0436\u0435 \u0432\u043b\u0438\u044f\u0435\u0442 \u0438 \u043d\u0430 Cisco Security Cloud Control (SCC) Firewall Management, \u043e\u0431\u043b\u0430\u0447\u043d\u044b\u0439 \u043c\u0435\u043d\u0435\u0434\u0436\u0435\u0440 \u043f\u043e\u043b\u0438\u0442\u0438\u043a \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438, \u0443\u043f\u0440\u043e\u0449\u0430\u044e\u0449\u0438\u0439 \u0443\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u0435 \u043f\u043e\u043b\u0438\u0442\u0438\u043a\u0430\u043c\u0438 \u043d\u0430 \u043c\u0435\u0436\u0441\u0435\u0442\u0435\u0432\u044b\u0445 \u044d\u043a\u0440\u0430\u043d\u0430\u0445 Cisco \u0438 \u0434\u0440\u0443\u0433\u0438\u0445 \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432\u0430\u0445.\n\n\u041d\u0430 \u0434\u0430\u043d\u043d\u044b\u0439 \u043c\u043e\u043c\u0435\u043d\u0442 \u0443 Cisco PSIRT \u043d\u0435\u0442 \u0434\u043e\u043a\u0430\u0437\u0430\u0442\u0435\u043b\u044c\u0441\u0442\u0432 \u0442\u043e\u0433\u043e, \u0447\u0442\u043e \u0434\u0432\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u044e\u0442\u0441\u044f \u0432 \u0430\u0442\u0430\u043a\u0430\u0445, \u0440\u0430\u0432\u043d\u043e \u043a\u0430\u043a \u0438 \u043d\u0435 \u044f\u0441\u043d\u043e \u0434\u043e\u0441\u0442\u0443\u043f\u0435\u043d \u043b\u0438 PoC \u0432 \u0438\u043d\u0442\u0435\u0440\u043d\u0435\u0442\u0435. \u041d\u043e \u0432\u0440\u0435\u043c\u044f \u043f\u043e\u043a\u0430\u0436\u0435\u0442.\n\n\u041f\u043e\u043c\u0438\u043c\u043e \u0443\u043a\u0430\u0437\u0430\u043d\u043d\u044b\u0445 \u043f\u0440\u043e\u0431\u043b\u0435\u043c Cisco \u0442\u0430\u043a\u0436\u0435\u00a0\u0443\u0441\u0442\u0440\u0430\u043d\u0438\u043b\u0430 \u0434\u0435\u0441\u044f\u0442\u043a\u0438 \u0434\u0440\u0443\u0433\u0438\u0445 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439, \u0432 \u0442\u043e\u043c \u0447\u0438\u0441\u043b\u0435 15 \u0441\u0435\u0440\u044c\u0435\u0437\u043d\u044b\u0445 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439 \u0432 Secure FMC, Secure Firewall Adaptive Security Appliance \u0438 Secure Firewall Threat Defense.", "creation_timestamp": "2026-03-05T13:00:08.000000Z"}, {"uuid": "b1fbc665-28eb-4e11-ad1e-30c339bef75a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "Telegram/Y_xNc4JrZ-tyC3UP8KNp3mHZkpQBlpIA1IgeHuDgcQrNJTo", "content": "", "creation_timestamp": "2026-05-10T21:00:05.000000Z"}, {"uuid": "32e2e710-50e6-4dfa-8225-9ac0700d52b7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://t.me/sysodmins/28627", "content": "\u2328\ufe0f \u041a\u0430\u043a \u0432\u044b\u043c\u043e\u0433\u0430\u0442\u0435\u043b\u0438 \u043f\u043e\u043b\u0442\u043e\u0440\u0430 \u043c\u0435\u0441\u044f\u0446\u0430 \u0438\u043c\u0435\u043b\u0438 Cisco \u0447\u0435\u0440\u0435\u0437 CVSS 10.0\n\n\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-20131 \u043f\u043e\u043b\u0443\u0447\u0438\u043b\u0430 \u043c\u0430\u043a\u0441\u0438\u043c\u0430\u043b\u044c\u043d\u044b\u0435 10 \u0438\u0437 10 \u043f\u043e \u0448\u043a\u0430\u043b\u0435 CVSS. \u041f\u0440\u0438\u0447\u0438\u043d\u0430 - \u0441\u0442\u0430\u0440\u0430\u044f \u0434\u043e\u0431\u0440\u0430\u044f \u043d\u0435\u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u0430\u044f \u0434\u0435\u0441\u0435\u0440\u0438\u0430\u043b\u0438\u0437\u0430\u0446\u0438\u044f Java-\u043e\u0431\u044a\u0435\u043a\u0442\u043e\u0432. \u041b\u044e\u0431\u043e\u0439 \u043c\u0438\u043c\u043e\u043a\u0440\u043e\u043a\u043e\u0434\u0438\u043b \u0431\u0435\u0437 \u0432\u0441\u044f\u043a\u043e\u0439 \u0430\u0432\u0442\u043e\u0440\u0438\u0437\u0430\u0446\u0438\u0438 \u043e\u0442\u043f\u0440\u0430\u0432\u043b\u044f\u043b \u0441\u043a\u0440\u0430\u0444\u0447\u0435\u043d\u043d\u044b\u0439 HTTP-\u0437\u0430\u043f\u0440\u043e\u0441 \u0432 \u0432\u0435\u0431-\u0438\u043d\u0442\u0435\u0440\u0444\u0435\u0439\u0441 \u0438 \u043f\u043e\u043b\u0443\u0447\u0430\u043b root \u043d\u0430 \u0436\u0435\u043b\u0435\u0437\u043a\u0435 \ud83c\udfa9\n\nCisco \u0432\u044b\u043a\u0430\u0442\u0438\u043b\u0430 \u043f\u0430\u0442\u0447 \u0438 \u043f\u0443\u0431\u043b\u0438\u0447\u043d\u043e \u043f\u0440\u0438\u0437\u043d\u0430\u043b\u0430 \u0444\u0430\u043a\u0430\u043f \u0442\u043e\u043b\u044c\u043a\u043e 4 \u043c\u0430\u0440\u0442\u0430 2026 \u0433\u043e\u0434\u0430. \u041d\u043e, \u043a\u0430\u043a \u043e\u043a\u0430\u0437\u0430\u043b\u043e\u0441\u044c, \u0445\u0430\u0446\u043a\u0435\u0440\u044b \u044e\u0437\u0430\u043b\u0438 \u044d\u0442\u043e\u0442 \u0431\u0430\u0433 \u043a\u0430\u043a \u043f\u043e\u043b\u043d\u043e\u0446\u0435\u043d\u043d\u044b\u0439 0-day \u0435\u0449\u0435 \u0441 26 \u044f\u043d\u0432\u0430\u0440\u044f. \u041f\u043e\u043b\u0442\u043e\u0440\u0430 \u043c\u0435\u0441\u044f\u0446\u0430 \u0444\u043e\u0440\u044b, \u041a\u0430\u0440\u043b! \n\n\u0421\u043f\u0430\u043b\u0438\u043b\u0438 \u0432\u0441\u044e \u043c\u0430\u043b\u0438\u043d\u0443 \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u0438\u043a\u0438 \u0438\u0437 Amazon Threat Intelligence. \u0421\u043d\u0430\u0447\u0430\u043b\u0430 \u043e\u043d\u0438 \u043f\u043e\u0439\u043c\u0430\u043b\u0438 \u0441\u043a\u0430\u043d\u044b \u043d\u0430 \u0441\u0432\u043e\u044e \u0433\u043b\u043e\u0431\u0430\u043b\u044c\u043d\u0443\u044e \u0441\u0435\u0442\u044c \u043b\u043e\u0432\u0443\u0448\u0435\u043a-\u0445\u0430\u043d\u0438\u043f\u043e\u0442\u043e\u0432 (MadPot), \u0430 \u043f\u043e\u0442\u043e\u043c \u0438\u043c \u043f\u0440\u043e\u0441\u0442\u043e \u0441\u043a\u0430\u0437\u043e\u0447\u043d\u043e \u043f\u043e\u0432\u0435\u0437\u043b\u043e... \u0445\u0430\u043a\u0435\u0440\u044b \u0438\u0437 Interlock \u043a\u0440\u0438\u0432\u043e \u043d\u0430\u0441\u0442\u0440\u043e\u0438\u043b\u0438 \u0441\u0432\u043e\u0439 \u0441\u0435\u0440\u0432\u0435\u0440 \u0438\u043d\u0444\u0440\u0430\u0441\u0442\u0440\u0443\u043a\u0442\u0443\u0440\u044b, \u0432\u044b\u0441\u0442\u0430\u0432\u0438\u0432 \u0435\u0433\u043e \u043d\u0430\u0440\u0443\u0436\u0443 \ud83d\udca9\n\n\u0410\u043c\u0430\u0437\u043e\u043d\u043e\u0432\u0446\u044b \u0442\u0443\u0434\u0430 \u0437\u0430\u043b\u0435\u0437\u043b\u0438 \u0438 \u0441\u0434\u0430\u043c\u043f\u0438\u043b\u0438 \u0432\u0441\u0451 \u0447\u0442\u043e \u043c\u043e\u0436\u043d\u043e. \u0412\u043d\u0443\u0442\u0440\u0438 \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0438\u043b\u0430\u0441\u044c \u043c\u043d\u043e\u0433\u043e\u0441\u0442\u0443\u043f\u0435\u043d\u0447\u0430\u0442\u0430\u044f \u0446\u0435\u043f\u043e\u0447\u043a\u0430 \u0430\u0442\u0430\u043a\u0438.. \u043a\u0430\u0441\u0442\u043e\u043c\u043d\u044b\u0435 \u0442\u0440\u043e\u044f\u043d\u044b \u043d\u0430 JS \u0438 Java, \u0440\u0435\u0437\u0438\u0434\u0435\u043d\u0442\u043d\u044b\u0435 \u0432\u0435\u0431-\u0448\u0435\u043b\u043b\u044b (\u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u0432\u0438\u0441\u044f\u0442 \u0442\u043e\u043b\u044c\u043a\u043e \u0432 \u043e\u043f\u0435\u0440\u0430\u0442\u0438\u0432\u0435 \u0438 \u043d\u0435 \u0433\u0430\u0434\u044f\u0442 \u043d\u0430 \u0434\u0438\u0441\u043a) \u0438 \u0441\u043a\u0440\u0438\u043f\u0442\u044b \u0440\u0430\u0437\u0432\u0435\u0434\u043a\u0438. \u0414\u043b\u044f \u043d\u0430\u0434\u0435\u0436\u043d\u043e\u0441\u0442\u0438 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0438 \u0441\u0442\u0430\u0432\u0438\u043b\u0438 \u0435\u0449\u0435 \u0438 \u043b\u0435\u0433\u0438\u0442\u0438\u043c\u043d\u044b\u0439 \u0441\u043e\u0444\u0442 (\u043d\u0430\u043f\u0440\u0438\u043c\u0435\u0440, ConnectWise ScreenConnect) - \u0442\u0443\u043f\u043e \u043f\u0440\u043e \u0437\u0430\u043f\u0430\u0441, \u043a\u0430\u043a \u0441\u0442\u0440\u0430\u0445\u043e\u0432\u043a\u0443 \u043d\u0430 \u0441\u043b\u0443\u0447\u0430\u0439, \u0435\u0441\u043b\u0438 \u0441\u0438\u0441\u0430\u0434\u043c\u0438\u043d\u044b \u043d\u0430\u0439\u0434\u0443\u0442 \u0438 \u0441\u043d\u0435\u0441\u0443\u0442 \u043e\u0441\u043d\u043e\u0432\u043d\u043e\u0439 \u0431\u044d\u043a\u0434\u043e\u0440. \n\n\u041c\u043e\u0440\u0430\u043b\u044c \u0441\u0435\u0439 \u0431\u0430\u0441\u043d\u0438 \u0441\u0442\u0430\u0440\u0430 \u043a\u0430\u043a \u043c\u0438\u0440... \u043d\u0438\u043a\u043e\u0433\u0434\u0430 \u043d\u0435 \u0441\u0432\u0435\u0442\u0438\u0442\u0435 \u0430\u0434\u043c\u0438\u043d\u043a\u0438 (\u0434\u0430\u0436\u0435 \u043e\u0442 \u0441\u0435\u043a\u044c\u044e\u0440\u043d\u044b\u0445 \u0444\u0430\u0435\u0440\u0432\u043e\u043b\u043e\u0432) \u0432 \u043e\u0442\u043a\u0440\u044b\u0442\u044b\u0439 \u0438\u043d\u0442\u0435\u0440\u043d\u0435\u0442. \n\n\u0422\u0438\u043f\u0438\u0447\u043d\u044b\u0439 \ud83e\udd78 \u0421\u0438\u0441\u0430\u0434\u043c\u0438\u043d", "creation_timestamp": "2026-03-31T18:10:59.000000Z"}, {"uuid": "7766c411-690f-4547-83a2-0da731ee8cca", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://poliverso.org/objects/0477a01e-cee1bb18-4ff58cc9bb092093", "content": "IT threat evolution in Q1 2026. Non-mobile statistics\nIT threat evolution in Q1 2026. Non-mobile statisticsIT threat evolution in Q1 2026. Mobile statistics\nThe statistics in this report are based on detection verdicts returned by Kaspersky products unless otherwise stated. The information was provided by Kaspersky users who consented to sharing statistical data.\nQuarterly figures\nIn Q1 2026:\n\nKaspersky products blocked more than 343 million attacks that originated with various online resources.\nWeb Anti-Virus responded to 50 million unique links.\nFile Anti-Virus blocked nearly 15 million malicious and potentially unwanted objects.\n2938 new ransomware variants were detected.\nMore than 77,000 users experienced ransomware attacks.\n14% of all ransomware victims whose data was published on threat actors\u2019 data leak sites (DLS) were victims of Clop.\nMore than 260,000 users were targeted by miners.\n\nRansomware\nQuarterly trends and highlights\nLaw enforcement success\nIn January 2026, it was reported that the FBI had seized the domains of the RAMP cybercrime forum, a major platform used extensively by ransomware developers to advertise their RaaS programs and to recruit affiliates. There has been no official statement from the FBI, nor is it clear if RAMP servers were seized. In a post on an external website, a RAMP moderator mentioned law enforcement agencies gaining control over the forum. The takedown disrupted a key element of the RaaS ecosystem, creating ripple effects for ransomware operators, affiliates, and initial access brokers.\nA man suspected of links to the Phobos group was apprehended in Poland. He was charged with the creation, acquisition, and distribution of software designed for unlawfully obtaining information, including data that facilitates unauthorized access to information stored within a computer system.\nIn March, a Phobos ransomware administrator pleaded guilty to the creation and distribution of the Trojan, which had been used in international attacks dating back to at least November 2020.\nIn March, the U.S. Department of Justice charged a man who had acted as a negotiator for ransomware groups. The company he worked for specializes in cyberincident investigations. The prosecution alleges the suspect colluded with the BlackCat threat actor to share privileged insights into the ongoing progress of negotiations. Additionally, the suspect is alleged to have had a prior direct role in BlackCat attacks, serving as an affiliate for the RaaS operation.\nIn a separate development this March, a U.S. court sentenced an initial access broker associated with the Yanluowang ransomware group to 81 months of imprisonment. According to the U.S. Department of Justice, the convict facilitated dozens of ransomware attacks across the United States, resulting in over $9 million in actual loss and more than $24 million in intended loss.\nVulnerabilities and attacks\nThe Interlock group has been heavily exploiting the CVE-2026-20131 zero-day vulnerability in Cisco Secure FMC firewall management software since at least January 26, 2026. The vulnerability enabled arbitrary Java code execution with root privileges on the affected device. This campaign demonstrates the ongoing reliance on zero-day vulnerabilities for initial access, a focus on network appliances as high-value entry points, and the rapid weaponization of new vulnerabilities within the ransomware ecosystem.\nThe most prolific groups\nThis section highlights the most prolific ransomware gangs by number of victims added to each group\u2019s DLS. This quarter, the Clop ransomware (14.42%) returned to the top of the rankings, displacing Qilin (12.34%), which had held the leading position in the previous reporting period. Following closely is a new threat actor, The Gentlemen (9.25%). Emerging no later than July 2025, the group had already surpassed the activity levels of mainstays such as Akira (7.25%) and INC Ransom (6.13%).\nNumber of each group\u2019s victims according to its DLS as a percentage of all groups\u2019 victims published on all the DLSs under review during the reporting period (download)\nNumber of new variants\nIn Q1 2026, Kaspersky solutions detected six new ransomware families and 2938 new modifications. Volumes have returned to Q3 2025 levels following a surge in Q4 2025.\nNumber of new ransomware modifications, Q1 2025 \u2014 Q1 2026 (download)\nNumber of users attacked by ransomware Trojans\nThroughout Q1, our solutions protected 77,319 unique users from ransomware. Ransomware activity was highest in March, with 35,056 unique users encountering such attacks during the month.\nNumber of unique users attacked by ransomware Trojans, Q1 2026 (download)\nAttack geography\nTOP 10 countries and territories attacked by ransomware TrojansCountry/territory*%**1Pakistan0.792South Korea0.643China0.524Tajikistan0.405Libya0.386Turkmenistan0.367Iraq0.358Bangladesh0.339Rwanda0.3010Cameroon0.28\n* Excluded are countries and territories with relatively few (under 50,000) Kaspersky users.** Unique users whose computers were attacked by ransomware Trojans as a percentage of all unique users of Kaspersky products in the country/territory.\nTOP 10 most common families of ransomware TrojansNameVerdict%*1(generic verdict)Trojan-Ransom.Win32.Gen33.902(generic verdict)Trojan-Ransom.Win32.Crypren6.383WannaCryTrojan-Ransom.Win32.Wanna5.874(generic verdict)Trojan-Ransom.Win32.Encoder4.685(generic verdict)Trojan-Ransom.Win32.Agent3.806LockBitTrojan-Ransom.Win32.Lockbit2.807(generic verdict)Trojan-Ransom.Win32.Phny1.998(generic verdict)Trojan-Ransom.MSIL.Agent1.969(generic verdict)Trojan-Ransom.Python.Agent1.9310(generic verdict)Trojan-Ransom.Win32.Crypmod1.89\n* Unique Kaspersky users attacked by the specific ransomware Trojan family as a percentage of all unique users attacked by this type of threat.\nMiners\nNumber of new variants\nIn Q1 2026, Kaspersky solutions detected 3485 new modifications of miners.\nNumber of new miner modifications, Q1 2026 (download)\nNumber of users attacked by miners\nIn Q1, we detected attacks using miner programs on the computers of 260,588 unique Kaspersky users worldwide.\nNumber of unique users attacked by miners, Q1 2026 (download)\nAttack geography\nTOP 10 countries and territories attacked by minersCountry/territory*%**1Senegal3.192Turkmenistan3.063Mali2.634Tanzania1.625Bangladesh1.066Ethiopia0.957Panama0.888Afghanistan0.799Kazakhstan0.7710Bolivia0.75\n* Excluded are countries and territories with relatively few (under 50,000) Kaspersky users.** Unique users whose computers were attacked by miners as a percentage of all unique users of Kaspersky products in the country/territory.\nAttacks on macOS\nIn Q1 2026, Google uncovered a new cryptocurrency theft campaign. The scammers directed victims to a fraudulent video call, prompting them to execute malicious scripts under the guise of technical support fixes for connection problems.\nIn March, researchers with GTIG and iVerify reported the discovery of an in-the-wild exploit chain targeting both iOS and macOS devices. The exploit kit was apparently marketed on the dark web, providing threat actors with a suite of spyware capabilities alongside specialized cryptocurrency exfiltration modules. The exploit was delivered via drive-by downloads when victims visited various compromised websites. Our analysis confirmed that the toolkit included an updated version of a component previously identified in the Operation Triangulation attack chain.\nDevices running macOS were similarly impacted by the high-profile supply chain attack targeting the Axios npm package, a widely used HTTP client for JavaScript. The installation of the infected package led to the deployment of a backdoor on macOS devices.\nTOP 20 threats to macOS\nUnique users* who encountered this malware as a percentage of all attacked users of Kaspersky security solutions for macOS (download)\n* Data for the previous quarter may differ slightly from previously published data due to some verdicts being retrospectively revised.\nThe share of PasivRobber spyware attacks is beginning to decline, giving way to more traditional adware and Monitor-class software capable of tracking user activity. The popular Amos stealer also maintains its presence within the TOP 20.\nGeography of threats to macOS\nTOP 10 countries and territories by share of attacked usersCountry/territory%* Q4 2025%* Q1 2026China1.281.97France1.181.07Brazil1.130.98Mexico0.720.52Germany0.710.45The Netherlands0.620.75Hong Kong0.490.53India0.420.48Russian Federation0.340.37Thailand0.240.27\n* Unique users who encountered threats to macOS as a percentage of all unique Kaspersky users in the country/territory.\nIoT threat statistics\nThis section presents statistics on attacks targeting Kaspersky IoT honeypots. The geographic data on attack sources is based on the IP addresses of attacking devices.\nIn Q1 2026, the share of devices attacking Kaspersky honeypots via the SSH protocol saw a significant increase compared to the previous reporting period.\nDistribution of attacked services by number of unique IP addresses of attacking devices (download)\nThe distribution of attacks between Telnet and SSH maintained the ratio observed in Q4 2025.\nDistribution of attackers\u2019 sessions in Kaspersky honeypots (download)\nTOP 10 threats delivered to IoT devices\nShare of each threat delivered to an infected device as a result of a successful attack, out of the total number of threats delivered (download)\nThe primary shifts in the IoT threat distribution are linked to the activity of various Mirai botnet variants, although members of this family continue to account for the majority of the list. Furthermore, a new variant, Mirai.kl, surfaced in the rankings. We also observed a significant decline in NyaDrop botnet activity during Q1.\nAttacks on IoT honeypots\nThe United States, the Netherlands, and Germany accounted for the highest proportions of SSH-based attacks during this period.Country/territoryQ4 2025Q1 2026United States16.10%23.74%The Netherlands15.78%17.57%Germany12.07%10.34%Panama7.72%6.34%India5.32%6.05%Romania4.05%5.82%Australia1.62%4.61%Vietnam4.21%3.50%Russian Federation3.79%2.35%Sweden2.25%2.09%\nChina continues to account for the largest proportion of Telnet attacks, though there was a marked increase in activity originating from Pakistan.Country/territoryQ4 2025Q1 2026China53.64%39.54%Pakistan14.27%27.31%Russian Federation8.20%8.25%Indonesia8.58%6.71%India4.85%4.66%Brazil0.06%3.30%Argentina0.02%2.51%Nigeria1.22%1.38%Thailand0.01%0.55%Sweden0.54%0.55%\nAttacks via web resources\nThe statistics in this section are based on detection verdicts by Web Anti-Virus, which protects users when suspicious objects are downloaded from malicious or infected web pages. These malicious pages are purposefully created by cybercriminals. Websites that host user-generated content, such as message boards, as well as compromised legitimate sites, can become infected.\nTOP 10 countries and territories that served as sources of web-based attacks\nThe following statistics show the distribution by country/territory of the sources of internet attacks blocked by Kaspersky products on user computers (web pages redirecting to exploits, sites containing exploits and other malicious programs, botnet C&C centers, and so on). One or more web-based attacks could originate from each unique host.\nTo determine the geographic source of web attacks, we matched the domain name with the real IP address where the domain is hosted, then identified the geographic location of that IP address (GeoIP).\nIn Q1 2026, Kaspersky solutions blocked 343,823,407 attacks launched from internet resources worldwide. Web Anti-Virus was triggered by 49,983,611 unique URLs.\nWeb-based attacks by country/territory, Q1 2026 (download)\nCountries and territories where users faced the greatest risk of online infection\nTo assess the risk of malware infection via the internet for users\u2019 computers in different countries and territories, we calculated the share of Kaspersky users in each location on whose computers Web Anti-Virus was triggered during the reporting period. The resulting data provides an indication of the aggressiveness of the environment in which computers operate in different countries and territories.\nThis ranked list includes only attacks by malicious objects classified as Malware. Our calculations leave out Web Anti-Virus detections of potentially dangerous or unwanted programs, such as RiskTool or adware.Country/territory*%**1Venezuela9.332Hungary8.163Italy7.584Tajikistan7.485India7.216Greece7.137Portugal7.108France7.059Belgium6.8310Slovakia6.8011Vietnam6.6212Bosnia and Herzegovina6.5713Canada6.5614Serbia6.5015Tunisia6.3616Qatar6.0117Spain5.9518Germany5.9519Sri Lanka5.8920Brazil5.88\n* Excluded are countries and territories with relatively few (under 10,000) Kaspersky users.** Unique users targeted by web-based Malware attacks as a percentage of all unique users of Kaspersky products in the country/territory.\nOn average during the quarter, 4.73% of users\u2019 computers worldwide were subjected to at least one Malware web attack.\nLocal threats\nStatistics on local infections of user computers are an important indicator. They include objects that penetrated the target computer by infecting files or removable media, or initially made their way onto the computer in non-open form. Examples of the latter are programs in complex installers and encrypted files.\nData in this section is based on analyzing statistics produced by anti-virus scans of files on the hard drive at the moment they were created or accessed, and the results of scanning removable storage media. The statistics are based on detection verdicts from the On-Access Scan (OAS) and On-Demand Scan (ODS) modules of File Anti-Virus and include detections of malicious programs located on user computers or removable media connected to the computers, such as flash drives, camera memory cards, phones, or external hard drives.\nIn Q1 2026, our File Anti-Virus detected 15,831,319 malicious and potentially unwanted objects.\nCountries and territories where users faced the highest risk of local infection\nFor each country and territory, we calculated the percentage of Kaspersky users whose computers had the File Anti-Virus triggered at least once during the reporting period. This statistic reflects the level of personal computer infection in different countries and territories around the world.\nNote that this ranked list includes only attacks by malicious objects classified as Malware. Our calculations leave out File Anti-Virus detections of potentially dangerous or unwanted programs, such as RiskTool or adware.Country/territory*%**1Turkmenistan47.962Tajikistan31.483Cuba31.034Yemen29.595Afghanistan28.476Burundi26.937Uzbekistan24.818Syria23.089Nicaragua21.9710Cameroon21.6011China21.0912Mozambique21.0213Algeria20.6414Democratic Republic of the Congo20.6315Bangladesh20.4416Mali20.3517Republic of the Congo20.2318Madagascar20.0019Belarus19.7820Tanzania19.52\n* Excluded are countries and territories with relatively few (under 10,000) Kaspersky users.** Unique users on whose computers local Malware threats were blocked, as a percentage of all unique users of Kaspersky products in the country/territory.\nOn average worldwide, Malware local threats were detected at least once on 11.55% of users\u2019 computers during Q1.\nRussia scored 11.92% in these rankings. \nsecurelist.com/malware-report-\u2026", "creation_timestamp": "2026-05-18T12:13:43.476440Z"}, {"uuid": "c102d4ba-8004-427b-a6a2-4f8649e31b2a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20131", "type": "seen", "source": "https://bsky.app/profile/boredchilada.bsky.social/post/3mm4vdspydl2p", "content": "~Kaspersky~\nKaspersky's Q1 2026 report highlights a surge in Clop ransomware, Mirai IoT botnets, and Interlock's exploitation of Cisco zero-day CVE-2026-20131.\n-\nIOCs: CVE-2026-20131\n-\n#CVE202620131 #Ransomware #ThreatIntel", "creation_timestamp": "2026-05-18T12:37:40.884923Z"}]}