Fortinet has addressed a critical authentication bypass vulnerability, CVE-2026-24858, affecting FortiOS, FortiManager, FortiAnalyzer, FortiWeb and FortiProxy. The vulnerability, with a…
Executive Summary A sophisticated China-linked threat actor, identified as UAT-8837, has been observed exploiting a critical zero-day vulnerability in the Sitecore…
This month’s Patch Tuesday marks a significant start to the year, with Microsoft delivering a heavy volume of updates to…
Network virtualization infrastructure continues to be a high-value target for well-resourced threat actors. Recent analysis has revealed a sophisticated intrusion…
Network edge devices continue to be a primary target for sophisticated state-sponsored actors aiming to bypass traditional perimeter defenses. Recent…
Two maximum severity vulnerabilities have been identified in a range of Fortinet products, including the widely deployed FortiGate firewalls. These…
A maximum severity vulnerability has been identified in Apache Tika, a widely used open-source content analysis toolkit. This vulnerability, designated…
A critical authentication bypass vulnerability in Fortinet's FortiWeb web application firewalls (WAF), identified as CVE-2025-64446 with a CVSS score of…
Executive Summary A targeted cyber-espionage campaign attributed to the threat group APT-C-08 is actively exploiting a high severity directory traversal…
Executive Summary A cyber-espionage group, identified as UNC6485, is actively exploiting a critical vulnerability in Gladinet's Triofox file-sharing platform. This…