
Dual CVSS 10.0 Cisco Flaws, AI Malware Assembly Line, Qualcomm Zero-Day & More | HN65
From Exploit Brokers By Forgebound Research - Tech and Hacking News Commentary by Cipherceval
March 26, 2026 · 23 min · Season 1 · Episode 65
About this episode
This episode discusses critical vulnerabilities in Cisco's firewall, AI-generated malware, and significant security updates from Google and Qualcomm.
This week on Hacking News, we're covering five stories that all share one theme: the things we trust most are the things being targeted. Cisco disclosed two CVSS 10.0 vulnerabilities in their Secure Firewall Management Center — the centralized brain that manages entire firewall fleets — giving unauthenticated attackers root access. Pakistan-linked APT36 has turned AI coding tools into a malware assembly line, flooding Indian government networks with disposable "vibeware" variants in a strategy Bitdefender calls "Distributed Denial of Detection." Google dropped the largest Android security update in almost eight years — 129 vulnerabilities — including a Qualcomm zero-day already under targeted exploitation across 234 chipsets. A China-linked threat cluster called UAT-9244 is burrowing into South American telecom infrastructure with three brand-new malware families spanning Windows, Linux, and edge devices. And LexisNexis confirmed a cloud breach after a threat actor exploited an unpatched React app and found the database password was... Lexis1234. ⏱️ Timestamps 0:00 — Cold Open: What do you call a hackable firewall manager? 1:21 — Welcome & CTA 2:01 — Story 1: Cisco Secure FMC —…
People in this episode
Host: Cipherceval
Topics covered
- cybersecurity
- vulnerabilities
- malware
- AI in hacking
- firewall security
- cloud breaches
Keywords
- CVSS 10.0
- Cisco vulnerabilities
- AI malware
- Qualcomm zero-day
- cloud breach
- Android security update
- APT36
- malware families
Mentioned in this episode
Organizations: Cisco, Pakistan-linked APT36, Bitdefender, Google, Qualcomm, LexisNexis
Products: Secure Firewall Management Center, Android, vibeware, React
Places: South America, India
More episodes of Exploit Brokers By Forgebound Research - Tech and Hacking News Commentary
- Cisco & Dell CVSS 10.0 Exploited for YEARS, Claude AI Jailbroken, ScarCruft Jumps Air Gaps | HN64 · March 12, 2026 · 28 min
- 600 Firewalls Breached by AI in 5 Weeks — Plus Chrome Zero-Day, CVSS 9.9 RCE & AI-Powered Malware | HN63 · March 5, 2026 · 29 min
- 6 Zero-Days Exploited NOW, Lazarus Poisons npm, AI-Generated Malware & More | HN62 · February 26, 2026 · 24 min
- State Hackers Hit 37 Countries, BeyondTrust CVSS 9.9 RCE, Signal Hijacked & More | HN Ep. 61 · February 19, 2026 · 22 min
- CRITICAL: Office Zero-Day + WordPress Admin Takeover + Chrome Extensions Stealing AI Chats | EP 60 · January 29, 2026 · 25 min
- I'm Back and Introducing Forgebound Research | The Rebrand · January 12, 2026 · 9 min
Explore listener stats, chart rankings, contacts and more on the Exploit Brokers By Forgebound Research - Tech and Hacking News Commentary podcast page.