cisco talos is tracking a china-linked advanced persistent threat group designated uat-8837 actively exploiting a zero-day vulnerability in sitecore content management software against critical infrastructure targets in north america, with activity dating to at least 2025. separately, cisa added multiple ubiquiti unifi os vulnerabilities to its known exploited vulnerabilities catalog and ordered federal civilian agencies to remediate by june 26. two simultaneous active-exploitation events targeting different classes of networked infrastructure — enterprise cms and edge network hardware — in the same cycle is an elevated structural density.