critical-infrastructure

vulnerabilities March 1, 2026 · 5 min read

Three Years Undetected: The Cisco SD-WAN Zero-Day That Triggered a Five-Eyes Alert

CVE-2026-20127 in Cisco SD-WAN controllers was exploited for three years before CISA and Five-Eyes partners issued emergency guidance.

threat-intelligence January 29, 2026 · 5 min read

Sandworm Strikes Poland: ICS Equipment Bricked in Power Grid Attack

Russian APT ELECTRUM breached ~30 Polish energy sites, disabling OT equipment beyond repair in the first major attack on distributed energy resources.