THE Week in Security Summary notes that Cisco SD-WAN exposed a maximum-severity vulnerability, tracked as CVE-2026-20127 (CVSS 10.0), which has been exploited in the wild since 2023 and allows an unauthenticated attacker to bypass authentication and obtain admin privileges on affected systems. According to the Australian Cyber Security Centre’s ASD-ACSC, exploitation and post‑compromise activity are being monitored under the moniker UAT-8616, described as a highly sophisticated cyber threat actor.
The recap also highlights ongoing global threat activity, including a Russian criminal investigation into Telegram CEO Pavel Durov over compliance with takedown requests. In related tech-security news, Bright SDK is being used in smart TVs to proxy and crawl the web, with Bright Data claiming access to over 150 million residential proxies across 195 countries.
The piece bundles further alerts, from thousands of public Google Cloud API keys exposed via Gemini to the U.S. government’s cyber‑attack fix-times improvements, illustrating how risk now flows across connected infrastructure.