Hackers have found a new hobby: exploiting vulnerabilities in Fortinet products to crash admin parties and swipe system configuration files. These exploits, CVE-2025-59718 and CVE-2025-59719, turn FortiCloud SSO into a not-so-secure sign-on, with attackers getting unauthorized access and making off with valuable data. Fortinet urges disabling FortiCloud SSO until safer versions are installed.

Beware of the sneaky NuGet package, Tracer.Fody.NLog, lurking in the shadows, waiting to pilfer your cryptocurrency wallet! This devious imposter masquerades as a legitimate .NET tracing library, but it’s really a wallet-stealing menace. Remember, the only thing scarier than typos is a typosquatting package with your digital gold in its sights.

Hackers have wasted no time exploiting critical Fortinet flaws, identified as CVE-2025-59718 and CVE-2025-59719, just days after patches were released. While Fortinet addressed these vulnerabilities, threat actors have already begun their mischievous antics, targeting multiple Fortinet products. Users are advised to disable FortiCloud SSO admin login and upgrade to safer versions.

Hypervisors are the unsung heroes of virtualized environments, but they’re also prime targets for cybercriminals looking to deploy hypervisor ransomware. As endpoint defenses tighten, attackers are zeroing in on these foundational layers. It’s time to treat your hypervisor like a VIP at a high-security gala—no unauthorized access, and definitely no crashes.

Petróleos de Venezuela (PDVSA) was hit by a cyberattack that allegedly didn’t affect operations—except for the part where systems went offline, and staff were told to shut down their computers. PDVSA blamed the U.S. and local conspirators for attempting to undermine national stability, adding a dramatic twist to Venezuela’s ongoing oil saga.

Askul, the Japanese e-commerce titan, faced a cyber calamity as hackers made off with over 700,000 records in a ransomware attack. The RansomHouse group claimed responsibility, leaking data after Askul refused to pay up. With logistics in disarray, it seems like Askul’s office supplies weren’t the only things on backorder!

Echo, a Tel Aviv-based startup, has raised $35 million in a Series A funding round, bringing its total to $50 million. The company uses AI agents to create CVE-free Docker images by stripping non-essential components, reducing vulnerabilities at their source. Echo promises instant value, with a vulnerability count dropping to zero.

JumpCloud Remote Assist vulnerability CVE-2025-34352 is like leaving the vault door open while juggling chainsaws. This flaw turns a security tool into a hacker’s dream, letting regular users gain SYSTEM level access. With over 180,000 victims possible, it’s time to update that software before chaos reigns supreme!

Russian state-sponsored threat actors, like Sandworm, are ditching vulnerabilities for misconfigurations to access critical infrastructure systems, says Amazon. This approach not only keeps their work stealthy but also budget-friendly. So, the next time your router acts up, maybe it’s not just the Wi-Fi gremlins.

Amazon’s threat intelligence team has unveiled a Russian state-sponsored campaign targeting Western critical infrastructure from 2021 to 2025. APT44, also known as FROZENBARENTS and other catchy aliases, cleverly exploited misconfigured customer network edge devices. They managed to harvest credentials with finesse, proving once again that in cyber espionage, it’s all about the edge.

In 2026, DDoS attacks will evolve from mere nuisances to elaborate smokescreens, diverting attention while cybercriminals wreak havoc elsewhere. As European organizations brace for these cunning tactics, Link11’s insights reveal the need for robust incident response frameworks and AI-driven defenses to counter these multi-layered threats. Welcome to the wild west of cybersecurity!

Microsoft is putting its foot down on outdated email software. Starting March 1, 2026, devices running Exchange ActiveSync versions below 16.1 will be blocked from Exchange Online. Time to update—or face a digital desert! Thankfully, Outlook Mobile users are safe, so you can still email in style.

Mixpanel seems to be taking a tour of the data breach hall of fame. After a third-party analytics breach at Mixpanel, Pornhub’s spicy secrets were kept safe, but some user data still slipped out. Meanwhile, SoundCloud users faced connection hiccups, and Japan’s Askul is still recovering from a ransomware attack mess.

A Russian state-sponsored campaign has moved from exploiting vulnerabilities to targeting misconfigured edge devices, according to Amazon. The shift allows persistent access while reducing exposure. With ties to the Russian GRU, it’s like a high-stakes game of hacker hide-and-seek. Let’s hope they don’t start charging rent for staying in our networks!

Beware! JumpCloud Remote Assist for Windows has a flaw that lets attackers play superhero with NT AUTHORITY\SYSTEM privileges. A bug in the uninstaller can lead to a Blue Screen of Death or a sneaky system shell. JumpCloud users, update now to avoid letting villains take over your endpoints!

European authorities recently dismantled a fraud network that ran call centers in Ukraine, scamming over 10 million euros from victims across Europe. The operation involved 45 suspects, 12 arrests, and the seizure of everything from vehicles to a polygraph machine. The scammers, masters of impersonation, even offered bonuses they never intended to pay!

MI6’s new chief, Blaise Metreweli, warns that the UK is operating “in a space between peace and war.” With AI, biotech, and quantum computing converging, it’s like science fiction meets international intrigue. But don’t worry, folks, MI6’s new tech-savvy recruits are as fluent in Python as they are in stopping global chaos.

Threat actors are exploiting new Fortinet FortiGate security flaws. Arctic Wolf reports malicious SSO logins and urges immediate patching. Vulnerabilities allow unauthenticated SSO bypass via crafty SAML messages. FortiCloud SSO is auto-enabled during registration, so turn it off! Protect your firewalls and VPNs; they’re prime hacker snack material!

Hackers hit SoundCloud, accessing some user data and causing VPN issues as security measures kicked in. Fortunately, passwords and financial info remain safe. While SoundCloud battles DDoS attacks, users should stay alert for phishing attempts. Heads up: streaming your latest mix might require dropping the VPN cloak for now!

In today’s episode of “Things You Never Want Exposed,” PornHub is facing extortion after hackers linked to ShinyHunters allegedly stole the search and viewing history of its Premium users via a Mixpanel data breach. While passwords and payment info remain safe, users’ online preferences might have just become the internet’s worst-kept secret.