Handala Wipes Stryker Offline: Iran’s Hacktivists Hit Medtech

March 12, 2026March 12, 2026 ~ larshilse ~ Leave a comment

I wrote about INC Ransom working through Australian healthcare for eighteen months roughly forty minutes ago. My keyboard hasn't cooled down. And then Bleeping Computer drops the Stryker story and I genuinely had to put my coffee down and read it twice. Because this is a different category of attack and it should scare the … Continue reading Handala Wipes Stryker Offline: Iran’s Hacktivists Hit Medtech

Cisco SD-WAN CVSS 10.0 Zero-Day: Your Network’s Been Open Since 2023

February 27, 2026February 27, 2026 ~ larshilse ~ Leave a comment

Oh, for fuck's sake. Here we go again. So Cisco drops a zero-day advisory last week — CVE-2026-20127, CVSS score of 10.0. That's a perfect score, for those keeping track at home. A clean, beautiful, maximum-severity authentication bypass in the Cisco Catalyst SD-WAN Controller (that's the thing formerly known as vSmart, because Cisco loves renaming … Continue reading Cisco SD-WAN CVSS 10.0 Zero-Day: Your Network’s Been Open Since 2023

OnSolve CodeRED Gets Ransomed—Emergency Alert Systems Held Hostage by INC Ransom

November 28, 2025November 28, 2025 ~ larshilse ~ Leave a comment

OnSolve's CodeRED emergency alert system just got ransomed. Emergency agencies across the US suddenly couldn't contact residents during emergencies. The INC Ransom gang breached the system, stole customer data including plain-text passwords, and when they didn't get paid, leaked everything online. Crisis24's response? Rebuild from an eight-month-old backup. This is what happens when critical infrastructure treats security as optional.