Cybersecurity and Infrastructure Security Agency (CISA)
Madhu Gottumukkala, acting director of the Cybersecurity and Infrastructure Security Agency, testifies during the DHS oversight hearing in the Cannon House office building on Jan. 21, 2026. (Photo by Heather Diehl/Getty Images)
The move follows a story about criticisms of CISA’s performance during the first year of the Trump administration, with Madhu Gottumukkala’s leadership a point of contention.
The global campaign marks the second series of multiple actively exploited zero-day vulnerabilities in Cisco edge technology since last spring. The similarities don’t end there.
Google researchers said Chinese attackers have been exploiting a zero-day since mid-2024, and they’ve moved on to a more advanced version of Brickstorm malware called Grimbolt.
Madhu Gottumukkala, acting director of the Cybersecurity and Infrastructure Security Agency, testifies during the DHS oversight hearing in the Cannon House office building on Jan. 21, 2026. (Photo by Heather Diehl/Getty Images)
Microsoft said three of the exploited vulnerabilities were publicly known, suggesting attackers already had details about the defects prior to Tuesday’s release.