Agencies issue guidance on exploitation of Cisco systems by cyber actors 

Feb 26, 2026 - 03:26 PM
Cybersecurity Lock on Gold Wall

U.S. and international agencies Feb. 25 released guidance on protecting Cisco Software-defined Wide-area Networking systems from exploitation by malicious cyber actors. The agencies said attackers have been observed exploiting an authentication bypass vulnerability to target and compromise Cisco SD-WAN systems of different organizations globally. The guidance provides recommendations for users to help prevent system attacks. 

“This critical vulnerability, a 10 out of 10, is actively being exploited by sophisticated adversaries to gain long-term access to networks,” said John Riggi, AHA national advisor for cybersecurity and risk. “The mandatory mitigation requirements of this advisory apply only to federal civilian executive branch agencies. However, it would be prudent for all organizations, including health care-related entities, to voluntarily adhere to the recommendations as well.” 

For more information on this or other cyber and risk issues, contact Riggi at jriggi@aha.org. For the latest cyber and risk resources and threat intelligence, visit aha.org/cybersecurity

Related News Articles

Headline
White House issues executive order addressing cybercrime by threat groups
The White House issued an executive order March 6 to combat cybercrimes by threat groups. The order highlights how such groups can receive willing or…
Headline
ASPR releases cybersecurity module to conduct risk assessments 
The Administration for Strategic Preparedness and Response has released a new cybersecurity module for organizations to conduct risk assessments. The free…
Perspective
Staying Cyber Alert and Cyber Ready
Public
As the world has learned in recent years, today’s conflicts are fought with many weapons, and cyber warfare is an integral part of the arsenal.As of this…
Headline
FBI reminds of potentially malicious activity by Iranian cyber actors
The FBI is reminding critical infrastructure organizations to implement mitigations from a June 2025 fact sheet on potential actions by Iranian-affiliated…
Headline
CISA report updates findings on RESURGE malware attacks
The Cybersecurity and Infrastructure Security Agency Feb. 26 released a report that updates findings from last year on RESURGE malware used to gain covert…
Headline
NSA issues guidelines on zero trust architecture
The National Security Agency has released two phases of its Zero Trust Implementation Guidelines for organizations to improve their zero trust architecture.…