Cisco firewall zero-day was used to deploy Interlock ransomware before public disclosure

A critical Cisco Secure Firewall Management Center flaw was exploited as a zero-day by the Interlock ransomware group before Cisco disclosed and patched it. Amazon threat intelligence says it observed Interlock exploiting CVE-2026-20131 starting on January 26, 2026, which was 36 days before Cisco published its advisory on March 4. The vulnerability affects Cisco Secure […] The post Cisco firewall zero-day was used to deploy Interlock ransomware before public disclosure appeared first on VPN Central.