Multiple Stored XSS
CVSSv3 Score: 4.3
An Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in FortiSandbox and FortiSandbox Cloud...
Clear-text credentials retrievable with IP modification for connectors
CVSSv3 Score: 4.1
A Storing Passwords in a Recoverable Format vulnerability in FortiSOAR may allow an authenticated remote attacker to...
Cleartext Credentials in response for API endpoints
CVSSv3 Score: 6.2
A Cleartext Transmission of Sensitive Information vulnerability in FortiSOAR may allow an authenticated attacker to view cleartext...
Arbitrary directory delete on vmimages delete feature
CVSSv3 Score: 6.2
An Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in FortiSandbox, FortiSandbox Cloud,...
A New Way to Buy Recorded Future: Solutions and Packages Built for the 2026...
Recorded Future is now offering four solutions covering cyber operations, digital risk protection, third-party risk, and payment fraud. Three...
Iran War: Future Scenario and Business Implications
The Iran situation remains volatile and uncertain, with material impacts for organizations. Leaders should plan for multiple future scenarios, prioritizing resilience and effective...
13th April – Threat Intelligence Report
For the latest discoveries in cyber research for the week of 13th April, please download our Threat Intelligence Bulletin.
TOP ATTACKS AND BREACHES
The Los Angeles...
Booking.com warns customers of hack that exposed their data
Undisclosed number of names and contact and reservation details accessed in latest cybercrime attemptThe accommodation reservation website Booking.com has suffered a data breach with...
Interactive Brokers Phishing Scam: Fake IRS W-8BEN Renewal Alert
By Don Santos, Cofense Phishing Defense Center Online trading platforms are popular among investors. Both beginners and professionals use them to study the financial markets,...
March 2026 CVE Landscape: 31 High-Impact Vulnerabilities Identified, Interlock Ransomware Group Exploits Cisco FMC...
In March 2026, Insikt Group® identified 31 high-impact vulnerabilities that should be prioritized for remediation, 29 of which had a Very Critical Recorded...
Latest article
Criminal IP at Infosecurity Europe 2026: Introducing AITEM, the Next Chapter of Attack Surface...
Torrance, United States / California, June 11th, 2026, CyberNewswire Criminal IP by AI SPERA, a cyber threat intelligence platform delivering decision-ready intelligence and attack...
Readers reply: Experts say we should use passkeys, but can a smartphone pin really...
The long-running series in which readers answer other readers’ questions on subjects ranging from trivial flights of fancy to profound scientific and philosophical conceptsThis...
CVE-2023-5678 Excessive time spent in DH check / generation with large Q parameter value
Information published. - Read more
Weekly Metasploit Update: New Kerberos/Certificate tracing options, and multiple new modules
New Tracing OptionsAs hard as we try to ensure that Metasploit is bug free, issues inevitably come up. Whether you’re running a module on...
