Identity abuse is the deliberate misuse of someone’s personal or organizational identity to gain access, steal money, or manipulate systems. In cybersecurity terms, it’s what happens when an attacker successfully impersonates a real person (an employee, a vendor, a customer, even a board member) and uses that stolen or spoofed identity to bypass defenses built […]
Cyber Security Weekly: Top stories from Last Week (Feb 22–Feb 28, 2026)
Cisco Catalyst SD-WAN auth bypass — CVE-2026-20127 (actively exploited, CVSS 10)Why it’s top: Internet-exposed SD-WAN control-plane components are high-impact; exploitation has been publicly reported, and agencies have issued urgent guidance. Ivanti Endpoint Manager Mobile (EPMM) — CVE-2026-1281 / CVE-2026-1340 (widespread automated exploitation attempts)Fix-first: Patch/mitigate any internet-facing EPMM immediately; treat as mass-scanned. BeyondTrust Remote Support / […]