Cisco Warns Webex Customers Of Critical SSO Problem

Cisco Warns Webex Customers Of Critical SSO Problem

From Cybersecurity Today by Jim Love

April 17, 2026 · 13 min

About this episode

Jim Love discusses critical vulnerabilities in WebEx, booking.com data breaches, Windows 11 security concerns, and the rise of AI-driven phishing services.

WebEx SSO Vulnerability, booking.com Reservation Hijacking Risks, Windows Recall Scrutiny, and AI Vishing-as-a-Service Host Jim Love reports that Cisco disclosed a critical WebEx vulnerability (CVE-2026-2184) affecting SSO integration with Control Hub; although server-side fixes are applied and no exploitation is seen, SSO customers must update SAML certificate configuration to avoid disruption when the old certificate expires, amid recent Cisco firewall zero-day exploitation (CVE-2026-2131) tied to interlock ransomware. A booking.com breach exposed some customers' reservation data (names, contact and address details, reservation details, and messages) but not payment cards, increasing phishing "reservation hijacking" risk using real itinerary details. Researchers also highlight new concerns with Microsoft's Windows 11 Recall, where data may be intercepted after login via another process, though Microsoft says protections are intended. Finally, an underground $4,000 platform, ATHR, automates phishing/vishing with AI voice agents to steal verification codes and accounts across major services. Cybersecurity Today would like to thank Meter for their support in bringing you this…

People in this episode

Host: Jim Love

Topics covered

  • WebEx SSO Vulnerability
  • booking.com Reservation Hijacking
  • Windows Recall Scrutiny
  • AI Vishing-as-a-Service

Keywords

  • CVE-2026-2184
  • CVE-2026-2131
  • reservation hijacking
  • interlock ransomware
  • AI voice agents

Sponsors

Meter

Mentioned in this episode

Products: Control Hub, Windows 11 Recall, WebEx, booking.com, Windows 11, ATHR

More episodes of Cybersecurity Today

Explore listener stats, chart rankings, contacts and more on the Cybersecurity Today podcast page.