Cisco SD-WAN Under Active Attack — ACSC Urges Australian Businesses to Patch

A CVSS 10.0 authentication-bypass flaw in Cisco Catalyst SD-WAN is under active exploitation. The ACSC discovered it and Five Eyes agencies say

No Comments

What Is Remote Code Execution (RCE)? The Security Term Behind This Weekend’s FortiSandbox Scare

Plain-English explainer: what remote code execution means, why "unauthenticated RCE" is the worst case, and the two questions to ask your IT

No Comments

Working FortiSandbox Exploit Goes Public — Patch Before Monday

A proof-of-concept exploit for an unauthenticated FortiSandbox RCE (CVE-2026-39808) is now public. If you run affected versions 4.4.0–4.4.8, patch today.

No Comments

Apache ActiveMQ Flaw Under Active Exploit — CISA Adds to KEV

Apache ActiveMQ CVE-2026-34197 is now actively exploited and on the CISA KEV list. If you're running ActiveMQ, upgrade to 5.19.4 or 6.2.3

No Comments

FortiClient EMS Zero-Day Under Active Attack — Update Now

Fortinet has released an emergency patch for a critical FortiClient EMS vulnerability (CVE-2026-35616) being actively exploited. Affected versions 7.4.5 and 7.4.6 need

No Comments