CISA added two Fortinet FortiSandbox vulnerabilities to its [Known Exploited Vulnerabilities (KEV) catalog](https://www.bleepingcomputer.com/news/security/cisa-warns-feds-to-patch-exploited-fortinet-f
CISA has added [CVE-2026-25089](https://hellorecon.com/blog/cve-2026-25089) to its Known Exploited Vulnerabilities catalog — meaning there is confirmed, active exploitation in the wild. The flaw is an
The [FortiBleed credential-theft campaign](https://www.bleepingcomputer.com/news/security/fortibleed-credential-theft-campaign-linked-to-lynx-ransomware/) has been formally tied to two active ransomwa
The day's biggest story isn't a vulnerability or a model launch — it's an export control order that briefly made Anthropic's AI inaccessible to its own employees, and the question it forced into the o
Threat intelligence firm Defused has confirmed that attackers are actively exploiting multiple critical vulnerabilities in Fortinet's FortiSandbox platform, the appliance many organizations rely on to
Threat actors are actively exploiting a critical vulnerability in Fortinet's FortiClient Endpoint Management Server (EMS) to deploy credential-stealing malware across managed enterprise environments,