authentication bypass

BigTech Companies

Fortinet Mitigates Critical FortiCloud SSO Zero-Day Before Patch

January 30, 2026
Fortinet logo in white on a red background with radiating lines.

A critical authentication bypass flaw (CVE-2026-24858) in Fortinet's FortiCloud SSO was actively exploited, allowing attackers to gain administrative control over…

Read More »
Business

Fortinet Patches Critical FortiCloud SSO Zero-Day Under Attack

January 30, 2026
Fortinet logo over a vintage computer with a warning sign on the screen.

Fortinet has patched a critical zero-day vulnerability (CVE-2026-24858) that allowed attackers to bypass authentication and gain unauthorized administrative access to…

Read More »
Business

6,000+ SmarterMail Servers Vulnerable to Hijacking

January 29, 2026
Digital image of glowing red and blue email envelope icons on a dark background.

A critical authentication bypass vulnerability (CVE-2026-23760) in SmarterMail email servers allows attackers to reset administrator passwords and take full control…

Read More »
Business

Fortinet Critical Auth Bypass Flaw Remains Unpatched

January 25, 2026
Fortinet logo on a dynamic red and blue abstract background.

A critical Fortinet SSO vulnerability (CVE-2025-59718) is being actively exploited via a bypass of the initial patch, allowing attackers to…

Read More »
Business

Patched FortiGate Firewalls Still Vulnerable to CVE-2025-59718

January 23, 2026
Stylized image of a stressed person at a keyboard with Fortinet logo.

A critical Fortinet firewall vulnerability (CVE-2025-59718) remains actively exploitable even on systems with official patches, allowing attackers to bypass authentication…

Read More »
BigTech Companies

IBM API Connect flaw exposes critical authentication bypass risk

January 1, 2026
IBM logo in white against a blurred red and black background.

A critical vulnerability (CVE-2025-13915) in IBM API Connect allows attackers to bypass authentication and gain unauthorized remote access, posing a…

Read More »
Cybersecurity

Thousands of FortiCloud SSO Devices Vulnerable to Remote Hacks

December 20, 2025
Fortinet logo on abstract background with red and blue accents.

Tens of thousands of internet-facing Fortinet devices remain vulnerable to critical authentication bypass flaws (CVE-2025-59718/9), creating a massive attack surface…

Read More »
Business

FortiGate Firewalls Under Attack: Critical Auth Bypass Exploited

December 19, 2025
Person looks at Fortinet logo over futuristic city through a data tunnel.

Attackers are actively exploiting a critical Fortinet firewall vulnerability (CVE-2025-59718) to bypass authentication and steal sensitive network configuration files containing…

Read More »
Business

Active Exploit Targets Suspected FortiWeb Zero-Day

November 15, 2025
Fortinet logo superimposed on a futuristic, glowing digital network.

A critical zero-day vulnerability (CVE-2025-64446) in Fortinet's FortiWeb is being actively exploited, allowing unauthenticated attackers to create unauthorized admin accounts…

Read More »
BigTech Companies

Urgent ASUS Router Security Flaw Exposed

November 15, 2025
The white ASUS logo is displayed prominently against a dark background with glowing red circuit board patterns.

ASUS has released an urgent firmware update (version 1.1.2.3_1010) to fix a critical security flaw (CVE-2025-59367) that allows unauthorized remote…

Read More »
BigTech Companies

Urgent: Patch Critical Cisco UCCX Vulnerabilities Now

November 7, 2025
Cisco logo with abstract blue and orange clouds and hands typing on a keyboard.

Cisco has patched two critical vulnerabilities (CVE-2025-20358 and CVE-2025-20354) in its Unified Contact Center Express platform, which could allow attackers…

Read More »
Business

Urgent Patch: Critical Passwordstate Vulnerability Exposed

August 28, 2025
Close-up of a computer screen showing a password entry field with obscured characters.

A critical security update is required for Passwordstate to address a high-severity vulnerability that allows attackers to bypass authentication and…

Read More »
Cybersecurity

Mitel warns of critical MiVoice MX-ONE security flaw

July 26, 2025
Mitel logo on a background of diagonal red and white stripes.

Mitel issued urgent security updates for a severe authentication bypass flaw in its MiVoice MX-ONE platform, which could allow unauthorized…

Read More »
Cybersecurity

1,200+ Citrix servers vulnerable to critical auth bypass flaw

July 1, 2025
Citrix logo against a starry night sky; a lone figure shines a red light into the distance.

Over 1,200 Citrix NetScaler systems remain vulnerable to CVE-2025-5777, a severe authentication bypass flaw enabling session hijacking and MFA bypass,…

Read More »
BigTech Companies

Microsoft SaaS Vulnerability Exposed Apps for 2 Years

June 26, 2025
Magnifying glass over binary code highlighting the term 'OpenID'.

A critical security flaw in Microsoft’s Entra ID, called nOAuth, has exposed thousands of enterprise applications for two years, allowing…

Read More »