Handala Threat Group
An Iranian aligned threat group conducting destructive and espionage focused cyber operations against organizations in Israel and Western countries.
CVE-2026-20127 is an improper authentication vulnerability impacting Cisco Catalyst SD-WAN Controller, formerly vSmart, and SD-WAN Manager, formerly vManage, components. The two solutions respectively serve as the centralized cont...
The article highlights the critical CVE-2026-20127 vulnerability affecting Cisco SD-WAN solutions and its active exploitation by an Iranian aligned threat group. This event underscores the importance of prompt remediation for such vulnerabilities, particularly those that allow remote access with high privileges, as they can lead to severe network impacts and potential escalation to further attacks (e.g., CVE-2022-20775). The article also draws attention to the ongoing cyber threats, including ra...