Cisco
Coverage of Cisco in the Nexus archive.
- Want a software engineering job? You'll need more than coding skills in the AI era.
AI is reshaping software engineering job requirements, with companies now prioritizing judgment and AI literacy over traditional coding skills. Employers use platforms like GitHub and X to evaluate candidates and increasingly allow AI tools during interviews. A 2025 report notes 74% of developers struggle to find jobs despite rising hiring rates.
- Cisco finally confirms attackers exploiting Unified CM flaw
Cisco has confirmed that attackers are exploiting a vulnerability in its Unified Communications Manager (Unified CM) system. The flaw was patched in early June but is now being actively used by attackers.
- The true cost of Donald Trump’s $2.2 billion year
Donald Trump earned $2.2 billion in his first year as president, surpassing his previous earnings as a CEO. The article details his financial gains through crypto ventures, stock trading, and other assets, as well as controversies including the Qatari-gifted Air Force One and ethical concerns over stock trades timed with policy announcements.
- It's looking like a hot, messy summer for security teams as AI finds countless previously hidden vulns
A coalition led by Chainguard, including companies like BNY, Cisco, and Cloudflare, is using AI to identify and patch vulnerabilities in open-source code. The group, Athena, has already processed 20,000 findings and developed 2,000 patches across 500 projects, warning of a 'messy summer' due to the scale of undiscovered flaws.
- Cisco to lay off more than 400 workers in California
Cisco, a San Jose-based tech company, will lay off over 400 workers in California. The job cuts will occur in their San Francisco Bay area offices.
- CISA sets urgent deadline to fix Cisco flaw exploited in attacks
CISA has issued an urgent deadline for federal agencies to patch a vulnerability in Cisco Unified Communications Manager Server that is currently being exploited in attacks.
- Hundreds of layoffs hit Cisco’s Bay Area offices
Cisco is laying off nearly 500 workers at its Bay Area offices as part of a realignment to focus on the AI era, according to state filings. The cuts were announced in a memo from CEO Chuck Robbins.
- Mark Cuban said AI firms should spend billions to help cities hit by job losses as a 'cost of doing business'
Mark Cuban advised AI companies to spend billions to support towns and cities affected by AI-driven job losses, calling it a 'cost of doing business.' He criticized AI firms for failing to prioritize people and losing public relations battles, urging direct engagement with creatives and workers to address concerns.
- Nvidia quietly rose to the top of a $10 billion market you may have never heard of
Nvidia became the top vendor in data center Ethernet switches in Q1 2026 with $2.1 billion in revenue, driven by its Spectrum-X product integrating AI chips. The market grew 61% year-over-year to $10 billion as cloud companies invest in AI infrastructure.
- Cisco Unified CM Flaw Exploited After PoC Reveals File-Write Path to Root
Threat actors are exploiting a critical security flaw in Cisco Unified Communications Manager and Unified CM SME, tracked as CVE-2026-20230, which allows unauthenticated remote attackers to exploit improper HTTP request input validation. The vulnerability has a CVSS score of 8.6 and enables a path to root file-write capabilities.
- Cisco Unified CM flaw CVE-2026-20230 now exploited in attacks
A high-severity SSRF vulnerability (CVE-2026-20230) in Cisco Unified Communications Manager Server is currently being exploited in attacks. The flaw allows attackers to manipulate the system through server-side request forgery.
- US Supreme Court limits scope of foreign human rights claims
The US Supreme Court limited the scope of foreign human rights claims by refusing to consider a complaint alleging Cisco enabled Chinese surveillance of a banned religious group. The justices declined to address the case, which involved allegations that the tech company facilitated monitoring activities targeting a specific religious organization.
- Supreme Court kills suit claiming Cisco’s technology helped China persecute Falun Gong members
The U.S. Supreme Court dismissed a lawsuit against Cisco, which alleged the company's technology aided China in persecuting Falun Gong members. The ruling rejected claims under the Alien Tort Statute and Torture Victim Protection Act, stating U.S. courts are not the appropriate venue for such suits. Cisco's technology was previously linked to China's surveillance efforts, including the 'Golden Shield' internet censorship program.
- Supreme Court kills suit claiming Cisco’s technology helped China persecute Falun Gong members
The Supreme Court granted Cisco's request to dismiss a lawsuit alleging that the company's technology was used to persecute Falun Gong members in China. The lawsuit claimed Cisco's technology aided in the persecution of the Falun Gong spiritual movement.
- Supreme Court kills suit claiming Cisco’s technology helped China persecute Falun Gong members
The Supreme Court dismissed a lawsuit against Cisco, which alleged its technology enabled China's persecution of Falun Gong members. The court ruled U.S. courts are not the appropriate venue, rejecting claims under the Alien Tort Statute and Torture Victim Protection Act. Cisco's involvement in China's 'Golden Shield' surveillance system and its role in tracking Falun Gong material were central to the case.
- Supreme Court kills suit claiming Cisco’s technology helped China persecute Falun Gong members
The Supreme Court dismissed a lawsuit against Cisco, which alleged its technology aided China's persecution of Falun Gong members. The court ruled U.S. courts are not the appropriate venue, rejecting claims under the Alien Tort Statute and Torture Victim Protection Act. Cisco disputed allegations it tailored technology for China's surveillance efforts targeting Falun Gong.
- Are you a consultant? Tell us how much you're spending on AI these days.
Consulting firms and their clients are reevaluating AI spending as costs rise, with companies like Amazon, Walmart, Uber, and Cisco expressing concerns over excessive expenses. Firms like KPMG and McKinsey are adopting AI tools but shifting toward strategic use, while Boston Consulting Group projects a significant increase in AI investment by 2026.
- 16 companies that have said they're doing AI-related layoffs
Multiple companies, including Snap, Block, Wix, GitLab, and Cisco, have cited AI-related efficiencies as a reason for recent layoffs. Some critics argue this reflects 'AI washing,' while studies show mixed impacts, with some positions being reopened after AI implementation.
- Cisco Releases Security Updates for Actively Exploited SD-WAN Manager Flaw
Cisco has released security updates to address a medium-severity vulnerability (CVE-2026-20262) in its Catalyst SD-WAN Manager, which is being actively exploited. The flaw allows an authenticated remote attacker to create files via the web UI, with a CVSS score of 6.5.
- Cisco SD-WAN make-me-root bug under attack
Cisco issued a fix for a critical vulnerability (CVE-2026-20262) in its Catalyst SD-WAN Manager, which attackers are actively exploiting to gain root privileges. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added the flaw to its Known Exploited Vulnerabilities catalog and mandated federal agencies to patch within two weeks. The vulnerability arises from improper input validation during file uploads, requiring valid credentials for exploitation.
- Gen Z grad landed an internship by wearing her university baseball cap to her pizza joint job. Now she works at Cisco
Ayala Ossowski, a Gen Z grad, wore her American University baseball cap while working at a pizza joint to signal her student status, leading to an internship and eventual job at Cisco. She overcame the 'internship paradox' by using the cap as a conversation starter to pitch her internship search to customers.
- Cisco customers encounter another SD-WAN zero-day under attack
Cisco customers are facing another actively exploited zero-day vulnerability (CVE-2026-20245) in its SD-WAN management software, marking the seventh such exploit this year. The flaw allows authenticated attackers to execute commands as root, but Cisco warns no patch or workaround is currently available, and exploitation requires existing credentials or prior vulnerabilities.
- Why Bay Area tech layoffs aren’t raising recession fears — yet
The Bay Area tech sector has experienced layoffs from companies like Oracle, Meta, LinkedIn, and Cisco, but experts note the pace is slower than 2022. Despite job cuts, the tech unemployment rate remains low, and laid-off workers often find new roles quickly. Generous severance and a strong stock market provide temporary financial buffers, though challenges in specific tech sectors like AI and data centers may slow job recovery.
- Cisco Catalyst SD-WAN Manager CVE-2026-20245 Flaw Actively Exploited – No Patch Available
Cisco has issued a warning about a high-severity security flaw (CVE-2026-20245) in its Catalyst SD-WAN Manager, which is being actively exploited. The vulnerability, with a CVSS score of 7.8, affects multiple deployment types including On-Prem, Cloud-Pro, Cloud (Cisco Managed), and SD-WAN for Government (FedRAMP). No patch is currently available.
- Tech stocks lead market bloodbath as fears of Fed rate hikes add to worries about the AI-fueled chip boom petering out
Tech stocks led a market decline as fears of prolonged Federal Reserve rate hikes and concerns about the AI-driven chip boom's sustainability intensified. A strong jobs report and disappointing guidance from chipmaker Broadcom exacerbated the selloff, with the Nasdaq dropping 4% and the S&P 500 falling 2.6%. Analysts noted a stable but non-inflationary labor market, delaying immediate rate hike expectations.
- Yet another Cisco SD-WAN 0-day under attack, and no patch in sight
Cisco's SD-WAN management software is under attack due to a high-severity zero-day vulnerability (CVE-2026-20245), which allows authenticated attackers to escalate privileges and execute commands. Cisco has not yet released a patch, and this is the sixth SD-WAN vulnerability exploited since the year began.
- Cisco warns of unpatched SD-WAN zero-day exploited in attacks
Cisco warned of a high-severity unpatched zero-day vulnerability in its Cisco Catalyst SD-WAN Manager (CVE-2026-20245) that is currently being exploited in attacks to enable root privilege escalation.
- Cisco Patches CVE-2026-20230 in Unified CM as Exploit Code Goes Public
Cisco has patched a server-side request forgery vulnerability (CVE-2026-20230) in Unified Communications Manager, allowing unauthenticated attackers to write files and escalate to root. Proof-of-concept exploit code is now public, though Cisco's PSIRT reports no observed attacks yet.
- Inside the race to adapt to an AI-powered security world
An AI-powered cybersecurity platform by XBOW discovered a vulnerability leading to a full takedown of Moderna's development environment, highlighting the growing shift in the industry as AI models outpace human teams in identifying vulnerabilities. Experts warn that the volume of AI-detected issues exceeds remediation capabilities, with aging infrastructure compounding the challenge.
- Cisco warns of critical Unified CM flaw with PoC exploit code
Cisco has released security updates to address a critical-severity flaw in its Unified Communications Manager (Unified CM) that allows attackers to gain root privileges. The vulnerability includes the availability of Proof of Concept (PoC) exploit code.
- Cisco sings Mythos' praises - but doesn't say how many bugs the model uncovered
Cisco used Anthropic’s Claude Mythos Preview and OpenAI’s GPT 5.5-Cyber to scan 1.8 billion lines of code in eight weeks, a task that would have taken eight years manually, but did not disclose the number of vulnerabilities found. Anthropic expanded its Project Glasswing partner program to 200 organizations, and Palo Alto Networks reported 26 CVEs discovered using Mythos in a month.
- Marvell enters the AI network fray with 102.4 Tbps switch silicon
Marvell unveiled a 102.4 Tbps AI-focused switch silicon, Teralynx T100, at COMPUTEX 2026, touting 25% lower power consumption and reduced latency compared to competitors. Nvidia CEO Jensen Huang praised Marvell as a potential 'next trillion-dollar company,' while noting its strategic partnership with Nvidia. Despite competitors like Broadcom and Cisco already offering similar products, Marvell's stock surged 24% pre-market following Huang's endorsement.
- Russian spy agency says foreign spies turned officials' smartphones into surveillance devices
Russia's Federal Security Service (FSB) alleges that foreign intelligence agencies implanted malware on smartphones of senior Russian officials to steal data and conduct surveillance. The FSB has initiated a criminal investigation but has not provided evidence or details about the malware, affected officials, or the responsible agency. Previous accusations by the FSB include a 2023 claim about US National Security Agency (NSA) compromising iPhones, which was linked to Kaspersky's 'Operation Triangulation' campaign.
- How Cisco’s Chuck Robbins gets his team to ‘disagree and commit’
Cisco, under CEO Chuck Robbins, has repositioned itself as a key player in AI infrastructure after missing the cloud computing shift. The company's stock has risen over 55% this year due to AI demand, and it now partners with AI leaders like Nvidia and OpenAI. Robbins emphasizes balancing traditional hardware with software and recurring revenue while addressing cybersecurity challenges in AI deployment.
- Cisco making SONiC available to all customers – not just hyperscalers
Cisco is expanding support for the open-source SONiC network operating system to its Nexus 9000 series datacenter switches, allowing customers beyond hyperscalers to use it. This move aims to provide flexibility for AI and non-AI clusters while maintaining existing ACI or NX-OS environments on the same hardware.
- A reality check on the AI jobs hysteria
The article challenges the notion that AI is causing widespread job losses among white-collar workers, citing data from the US Bureau of Labor Statistics showing lower unemployment rates for AI-affected jobs. It highlights that AI's impact on labor markets remains speculative, with limited evidence of large-scale disruption, and notes that only 20% of companies use AI in business functions.
- Cisco used AI to write security incident reports, with mixed results
Cisco tested AI for writing security incident response reports and found it can reduce drafting time by 50% but requires careful prompts and safeguards to avoid hallucinations and inconsistencies. The company's Talos Incident Response team discovered that while AI-generated reports matched human quality in blind tests, risks remain including cross-contamination between documents and unpredictable formatting.
- Max severity Cisco Secure Workload flaw gives Site Admin privileges
Cisco has released security updates addressing a maximum-severity vulnerability in Secure Workload that allows attackers to gain Site Admin privileges. This critical flaw poses significant security risks to organizations using the affected software.
- Cisco serves up yet another perfect 10 bug with Secure Workload admin flaw
Cisco disclosed a critical vulnerability (CVE-2026-20223) with a perfect 10.0 CVSS score in its Secure Workload platform that allows unauthenticated attackers to gain Site Admin privileges and access sensitive information across tenant boundaries. The flaw affects both SaaS and on-premises deployments and requires patching to version 3.10.8.3 or 4.0.3.17, though cloud-hosted instances have already been remediated. This marks the latest in a series of maximum-severity security flaws discovered in Cisco infrastructure products.
- Shadow AI invades the workplace, up 4x in the last year
The use of unauthorized personal accounts to access GenAI tools in the workplace has increased fourfold in the last year, posing a growing insider-risk concern for organizations. Employees are using these accounts to access AI platforms, potentially exposing sensitive corporate data. This surge in 'shadow AI' has led to new thinking around security measures, including the evolution of software bill of materials (SBOMs) to AI-BOMs.