Explore

Rapid Read Rapid Read
CISA Mandates Urgent Patch for Fortinet EMS Vulnerability Amid Active Exploitation

CISA Mandates Urgent Patch for Fortinet EMS Vulnerability Amid Active Exploitation

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued a directive for federal agencies to patch a critical vulnerability in FortiClient Enterprise Management Server (EMS) by April 9. The flaw, identified as CVE-2026-35616, allows attackers to bypass authentication controls, posing significant risks to federal networks. Discovered by cybersecurity firm Defused, the vulnerability has been actively exploited in the wild. Fortinet has released emergency hotfixes to address the issue, urging immediate action from IT administrators. CISA's directive, part of Binding Operational Directive 22-01, emphasizes the urgency of securing federal systems against this threat.
Rapid Read Rapid Read
Fortinet Issues Emergency Patch for Zero-Day Vulnerability Affecting FortiClient EMS

Fortinet Issues Emergency Patch for Zero-Day Vulnerability Affecting FortiClient EMS

Fortinet has released emergency patches to address a critical vulnerability in its FortiClient Enterprise Management Server (EMS) that has been actively exploited as a zero-day. The flaw, identified as CVE-2026-35616, is an improper access control issue that could allow remote code execution without authentication. Fortinet has observed active exploitation of this vulnerability and has provided hotfixes for FortiClient EMS versions 7.4.5 and 7.4.6, with a full fix expected in version 7.4.7. The vulnerability was reported by the cybersecurity firm Defused, which noted that attackers could bypass API authentication and authorization. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added this vulnerability to its Known Exploited Vulnerabilities catalog, urging federal agencies to apply the patch by April 9.
Rapid Read Rapid Read
Fortinet Releases Emergency Fixes for Critical Zero-Day Vulnerability

Fortinet Releases Emergency Fixes for Critical Zero-Day Vulnerability

Fortinet has issued emergency fixes for a critical zero-day vulnerability in its FortiClient Enterprise Management Server (EMS), identified as CVE-2026-35616. This flaw, characterized by improper access control, allows remote code execution without authentication. Fortinet's advisory warns of active exploitation in the wild, prompting the release of hotfixes for affected versions 7.4.5 and 7.4.6, while version 7.2 remains unaffected. The vulnerability was reported by cybersecurity firm Defused, which observed exploitation and disclosed the issue under responsible protocols. The Shadowserver Foundation has identified approximately 2,000 internet-accessible FortiClient EMS instances potentially vulnerable to attacks.
Rapid Read Rapid Read
U.S. Cybersecurity Strategy Shifts to Proactive Defense Amid Rising Threats

U.S. Cybersecurity Strategy Shifts to Proactive Defense Amid Rising Threats

The U.S. government is transitioning from a reactive cybersecurity model to a proactive approach, aiming to disrupt cyber threats before they reach their targets. This shift is highlighted by the White House's new cyber strategy, which prioritizes offensive cybersecurity measures. Major technology companies, such as Google, are investing in capabilities to actively thwart cyber threats. This change comes as traditional defensive models struggle to keep pace with increasingly sophisticated and automated cyber threats.
Trendline Trendline
Fortinet Issues Emergency Fixes for Critical Zero-Day Vulnerability in FortiClient EMS

Fortinet Issues Emergency Fixes for Critical Zero-Day Vulnerability in FortiClient EMS

Fortinet Issues Emergency Fixes for Critical Zero-Day Vulnerability in FortiClient EMS
Rapid Read Rapid Read
FBI Declares Network Breach a Major Incident, Initiates Cybersecurity Measures

FBI Declares Network Breach a Major Incident, Initiates Cybersecurity Measures

The Federal Bureau of Investigation has classified a recent breach of its networks, used for managing wiretaps and surveillance, as a 'major incident.' This classification follows an investigation into unusual activity detected on the network, which contains sensitive law enforcement data. The breach has prompted the FBI and the Justice Department to enhance cybersecurity measures and conduct forensic examinations to assess the extent of the intrusion. The incident underscores the ongoing challenges of protecting sensitive government information from sophisticated cyber threats.
Rapid Read Rapid Read
FBI Declares Network Breach a 'Major Incident' Amid Cybersecurity Concerns

FBI Declares Network Breach a 'Major Incident' Amid Cybersecurity Concerns

The FBI has classified a recent breach of its networks, used for managing wiretaps and surveillance, as a 'major incident.' The breach, first detected on February 17, involved sophisticated techniques exploiting a commercial Internet Service Provider's infrastructure. The affected system contains sensitive law enforcement information, including data from electronic surveillance. The Justice Department and FBI are conducting forensic examinations and have established a working group to enhance cyber resilience. The breach's classification as a 'major incident' underlines its potential to harm national security and US interests.
Trendline Trendline
Fortinet Releases Emergency Patch for Critical FortiClient EMS Vulnerability Exploited in Attacks

Fortinet Releases Emergency Patch for Critical FortiClient EMS Vulnerability Exploited in Attacks

Fortinet Releases Emergency Patch for Critical FortiClient EMS Vulnerability Exploited in Attacks
Rapid Read Rapid Read
Medusa Ransomware Exploits Vulnerabilities, Impacting Critical Sectors

Medusa Ransomware Exploits Vulnerabilities, Impacting Critical Sectors

The Medusa ransomware group, operating as a ransomware-as-a-service (RaaS), has been rapidly exploiting vulnerabilities across various sectors, according to Microsoft. Active since June 2021, Medusa has targeted over 300 organizations, particularly in critical infrastructure, by February 2025. The group employs double extortion tactics, encrypting data and threatening public exposure. They gain initial access through phishing and unpatched vulnerabilities, moving quickly to post-compromise operations. Medusa's operators, identified as Storm-1175, have been noted for their swift exploitation of newly disclosed vulnerabilities and zero-day bugs, impacting sectors such as healthcare, education, and finance in the U.S., U.K., and Australia. The group has exploited at least 16 vulnerabilities in systems like Microsoft Exchange and SAP NetWeaver, often deploying ransomware within a day of gaining access.
Trendline Trendline
Fortinet Issues Urgent Security Update for Zero-Day Vulnerability in FortiClientEMS

Fortinet Issues Urgent Security Update for Zero-Day Vulnerability in FortiClientEMS

Fortinet Issues Urgent Security Update for Zero-Day Vulnerability in FortiClientEMS
Rapid Read Rapid Read
New York Local Governments Receive $10.5 Million in Federal Cybersecurity Grants

New York Local Governments Receive $10.5 Million in Federal Cybersecurity Grants

New York's local governments, including Warren and Washington counties and the Village of Hudson Falls, have been awarded $10.5 million in federal grants through the Homeland Security program. These funds are designated for enhancing cybersecurity capabilities, protecting critical infrastructure, and improving emergency preparedness. The grants will support various programs, including the Hazardous Materials Targeted Grant Program and the Cybersecurity Grant Program. Washington County, for instance, will receive $50,000 to enhance its cybersecurity posture, focusing on improving email and internet security. The funding aims to bolster local governments' ability to respond to cyber threats and protect critical infrastructure.
Trendline Trendline
KeeperDB Introduces Zero-Trust Database Access for Enhanced Security

KeeperDB Introduces Zero-Trust Database Access for Enhanced Security

KeeperDB Introduces Zero-Trust Database Access for Enhanced Security