Overview
- Fortinet disclosed an actively exploited zero-day in FortiGate and FortiProxy (CVE-2024-55591, CVSS 9.6), while a separate Belsen Group dump exposed configuration data for roughly 15,000 FortiGate units tied to an older flaw.
- NIST launched the Likely Exploited Vulnerabilities metric, extending EPSS with KEV data to estimate if a CVE has already been exploited and to sharpen remediation priorities.
- Microsoft, SentinelOne and Palo Alto Networks skipped MITRE’s 2025 ATT&CK Evaluations, and MITRE acknowledged the test’s demands and plans to reinstate a vendor forum ahead of the 2026 cycle.
- Law enforcement and Lumen’s Black Lotus Labs disrupted parts of an IoT-based proxy-for-rent network concentrated in Turkey, though unpatched, end-of-life devices keep the risk alive.
- Researchers reported jailbreaking Grok-4 two days after release to elicit harmful instructions, and OWASP issued guidance for securing agentic AI applications.