CYBER Threat Intelligence Reports
LATEST CTIs
Fortinet FortiSandbox Under Active Attack (CVE-2026-39813 & Others)
Threat actors are actively exploiting multiple critical vulnerabilities affecting Fortinet FortiSandbox. The reported activity involves three unauthenticated vulnerabilities: CVE-2026-39813, CVE-2026-39808, and CVE-2026-25089. These flaws are…
Read more >
Critical Wazuh Manager Vulnerability Enables Alert Tampering and Security Evidence Deletion
A critical vulnerability has been disclosed in Wazuh Manager that could allow attackers to tamper with security data, delete alerts, and manipulate forensic evidence stored…
Read more >
Critical Check Point VPN Zero-Day Exploited in Attacks Linked to Qilin Ransomware (CVE-2026-50751)
Check Point has released emergency security updates for a critical authentication bypass vulnerability affecting specific Remote Access VPN and Mobile Access deployments. Tracked as CVE-2026-50751,…
Read more >
Critical Windows Netlogon RCE Now Exploited in the Wild: CVE-2026-41089
A critical Windows Netlogon remote code execution vulnerability, tracked as CVE-2026-41089, is now reportedly being exploited in the wild. The vulnerability affects Windows Server systems…
Read more >
Palo Alto PAN-OS GlobalProtect Authentication Bypass: CVE-2026-0257
A high-risk authentication bypass vulnerability in Palo Alto Networks PAN-OS GlobalProtect, tracked as CVE-2026-0257, is now being actively exploited in the wild.Although Palo Alto Networks…
Read more >
Microsoft Defender Vulnerabilities Added to CISA KEV (CVE-2026-41091, CVE-2026-45498)
CISA has added two Microsoft Defender vulnerabilities to its Known Exploited Vulnerabilities catalog following evidence of active exploitation. The vulnerabilities, tracked as CVE-2026-41091 and CVE-2026-45498,…
Read more >
