
Cisco Warns Webex Customers Of Critical SSO Problem
From Cybersecurity Today by Jim Love
April 17, 2026 · 13 min
About this episode
Jim Love discusses critical vulnerabilities in WebEx, booking.com data breaches, Windows 11 security concerns, and the rise of AI-driven phishing services.
WebEx SSO Vulnerability, booking.com Reservation Hijacking Risks, Windows Recall Scrutiny, and AI Vishing-as-a-Service Host Jim Love reports that Cisco disclosed a critical WebEx vulnerability (CVE-2026-2184) affecting SSO integration with Control Hub; although server-side fixes are applied and no exploitation is seen, SSO customers must update SAML certificate configuration to avoid disruption when the old certificate expires, amid recent Cisco firewall zero-day exploitation (CVE-2026-2131) tied to interlock ransomware. A booking.com breach exposed some customers' reservation data (names, contact and address details, reservation details, and messages) but not payment cards, increasing phishing "reservation hijacking" risk using real itinerary details. Researchers also highlight new concerns with Microsoft's Windows 11 Recall, where data may be intercepted after login via another process, though Microsoft says protections are intended. Finally, an underground $4,000 platform, ATHR, automates phishing/vishing with AI voice agents to steal verification codes and accounts across major services. Cybersecurity Today would like to thank Meter for their support in bringing you this…
People in this episode
Host: Jim Love
Topics covered
- WebEx SSO Vulnerability
- booking.com Reservation Hijacking
- Windows Recall Scrutiny
- AI Vishing-as-a-Service
Keywords
- CVE-2026-2184
- CVE-2026-2131
- reservation hijacking
- interlock ransomware
- AI voice agents
Sponsors
Meter
Mentioned in this episode
Products: Control Hub, Windows 11 Recall, WebEx, booking.com, Windows 11, ATHR
More episodes of Cybersecurity Today
- Vercel Breach Started With AI Tool · April 22, 2026 · 11 min
- Security Researcher Goes To War Against Microsoft · April 20, 2026 · 21 min
- Cybersecurity Today Month in Review of March/April 2026 · April 18, 2026 · 1h 2m
- North Korean Spies DM You On Facebook · April 15, 2026 · 20 min
- Banks Panic As Anthropic Mythos Exposes Software Vulnerabilties · April 13, 2026 · 19 min
- Jeff Williams CTO Cofounder of Contrast Security and OWASP co-founder on Mythos and AI Security · April 11, 2026 · 36 min
Explore listener stats, chart rankings, contacts and more on the Cybersecurity Today podcast page.