CISA Orders Emergency Patch for Actively Exploited Dell Flaw;

Update: 2026-02-20

Digest

This podcast covers several significant cybersecurity incidents. CISA has mandated an urgent patch for a critical Dell Recover Point for Virtual Machines vulnerability (CVE 202622769) due to active exploitation by a China-aligned threat group, which allows unauthenticated attackers root-level privileges. Texas is suing TP-Link, alleging deceptive trade practices regarding the origin and security of their routers, which may expose users to Chinese state-linked threats. An AI identity verification provider experienced a data leak, exposing nearly a billion personal records from an unsecured MongoDB database, posing a high risk of fraud and identity theft. Finally, a whistleblower alleges a massive data leak from the Social Security Administration's master database, though the SSA disputes these claims, stating their core database remains secure.

Outlines

00:00:18

Critical Dell Vulnerability and TP-Link Lawsuit

CISA has ordered federal agencies to urgently patch a critical Dell Recover Point for Virtual Machines vulnerability (CVE 202622769) due to active exploitation by a China-aligned threat group. Separately, Texas is suing router manufacturer TP-Link, alleging misleading claims about device security and origin, potentially exposing users to Chinese state-linked cyber threats.

00:03:30

Massive Data Leaks: AI Provider and Social Security Administration

An unsecured MongoDB database linked to an AI identity verification provider exposed nearly a billion sensitive personal records. Concurrently, a whistleblower alleges a massive data leak from the Social Security Administration's master database, though the SSA disputes these claims, asserting their core database remains secure.

Keywords

CVE 202622769

A critical vulnerability in Dell Recover Point for Virtual Machines allowing root-level privileges, actively exploited by threat actors.

Texas Deceptive Trade Practices Act

Legislation used by Texas to sue TP-Link for misleading consumers about product security and origin.

AI-powered identity verification

Systems using AI for identity verification that, when unsecured, can expose vast amounts of personal data.

Whistleblower complaint

Allegations of significant data mismanagement and potential leaks within government agencies.

NUMADENT database

The Social Security Administration's master file, which the SSA states remains secure despite whistleblower allegations.

Cybersecurity risks

Potential threats to individuals and organizations from vulnerabilities, data breaches, and deceptive practices.

Data breach

Unauthorized access to sensitive information, as seen with the AI identity provider and alleged SSA leak.

Root-level privileges

The highest level of access a user can have on a computer system, granted by the Dell vulnerability.

Social Security Administration (SSA)

US agency whose data security is under scrutiny due to whistleblower allegations.

TP-Link

Router manufacturer facing a lawsuit from Texas over alleged cybersecurity and origin misrepresentations.

Q&A

What is the CISA directive regarding the Dell vulnerability, and why is it urgent?
CISA has directed federal civilian agencies to patch CVE 202622769, a critical Dell Recover Point vulnerability, within three days due to confirmed active exploitation by threat actors, carrying a maximum severity score (CVSS 10), and the potential to grant attackers root-level privileges.
What are the main allegations in the lawsuit filed by Texas against TP-Link?
Texas alleges TP-Link misled consumers about the security and origin of its routers, potentially exposing users to Chinese state-linked cyber threats. The suit claims components originated in China despite "Made in Vietnam" labels, and that TP-Link routers have been exploited in past cyber attacks.
What sensitive information was exposed in the AI identity verification provider data leak?
The data leak exposed nearly a billion personal records, including full names, email addresses, phone numbers, national identification numbers (like Social Security numbers), birth dates, physical addresses, and more. This occurred due to an unsecured MongoDB database.
What is the core of the whistleblower's allegation regarding the Social Security Administration?
A former SSA official alleges that a live copy of the SSA's master database, containing sensitive personal information of Americans, was created in a cloud environment without proper oversight, potentially exposing hundreds of millions to long-term fraud risk.
How has the Social Security Administration responded to the whistleblower's allegations?
The Social Security Administration, through Commissioner Frank Bisignano, stated that an internal review found the core NUMADENT database, containing American social security numbers, remained secure and had not been hacked, leaked, or accessed unauthorizedly, directly contradicting the whistleblower's claims.

Show Notes

CISA Orders Emergency Patch for Actively Exploited Dell Flaw; Texas Sues TP-Link; Massive ID Verification Data Leak; SSA Database Leak Allegations

Host Jim Love covers four cybersecurity stories:

Cybersecurity Today would like to thank Meter for their support in bringing you this podcast. Meter delivers a complete networking stack, wired, wireless and cellular in one integrated solution that's built for performance and scale. You can find them at Meter.com/cst

CISA ordered federal civilian agencies to patch an actively exploited critical Dell RecoverPoint for Virtual Machines vulnerability (CVE-2026-2769) within three days, citing hard-coded credentials that allow unauthenticated root access and links to a China-aligned threat cluster; Texas Attorney General filed suit against TP-Link alleging deceptive security and origin claims and risks tied to Chinese state-linked threats, while TP-Link denies the allegations and says it operates independently, stores U.S. user data on AWS, and bases core operations in the U.S.; researchers found an unsecured MongoDB database tied to AI-powered identity verification provider ID Merit exposing nearly 1 billion records with sensitive personal data, attributed to misconfiguration rather than compromise of the AI systems; and a MarketWatch report describes whistleblower Chuck Borges alleging SSA master data was copied to a cloud environment without oversight, contrasted by the Social Security Commissioner stating the core Numident database remained secure, with Love noting no confirmed public evidence but expressing concern about the implications if such foundational data were compromised.

00:00 Sponsor Message: Meter's Full-Stack Networking
00:19 Headlines: Dell Exploit, TP-Link Lawsuit, Massive Data Leak, SSA Claims
00:45 Urgent Patch Order: Actively Exploited Dell RecoverPoint CVE
02:19 Texas Sues TP-Link Over Router Security & China-Ties Allegations
03:31 AI Identity Verification Leak: Nearly 1 Billion Records Exposed
05:07 Did SSA Data Leak? Whistleblower vs. Official Denial
06:54 Host Take: What If the "Foundational" Database Was Compromised?
07:37 Wrap-Up + Sponsor Thanks and Where to Book a Demo