The activity, observed by the cybersecurity company in May 2026, involves the exploitation of CVE-2026-35616 (CVSS score: 9.1), a critical pre-authentication API access bypass leading to privilege escalation. https://thehackernews.com/2026/05/threat-actors-exploit-critical.html

📰 Active Exploitation of Critical FortiClient EMS Flaw (CVE-2026-35616) Used to Deploy Credential Stealers

📢 ACTIVE EXPLOITATION: A critical FortiClient EMS flaw (CVE-2026-35616, CVSS 9.1) is being used to push credential stealers to all managed endpoints via PowerShell. Update to version 7.4.7 NOW. 🛡️ #Fortinet #CyberAttack #PatchNow

🌐 cyber[.]netsecops[.]io

🔗 https://cyber.netsecops.io/articles/forticlient-ems-flaw-cve-2026-35616-actively-exploited/?utm_source=m…

Update immediately if you cannot patch your Linux kernel yet: Docker Releases Mitigation for Copy Fail (CVE-2026-31431) - OSTechNix https://ostechnix.com/docker-copy-fail-mitigation/

#Docker Releases Mitigation for Copy Fail (CVE-2026-31431)

https://ostechnix.com/docker-copy-fail-mitigation/

📰 CISA Issues Urgent Advisories for Critical Flaws in ICS and OT Devices

⚠️ CISA issues urgent advisories for critical ICS/OT vulnerabilities. Flaws in Jinan USR, ABB, Schneider Electric products could lead to device takeover. A 9.8 CVSS flaw (CVE-2026-7786) has no patch available! 🏭 #ICS #OTsecurity #CISA

🌐 cyber[.]netsecops[.]io

🔗 https://cyber.netsecops.io/articles/cisa-warns-of-critical-ics-ot-vulnerabilities/?utm_source=mastodon&utm_medium=social&utm_campaign=daily

So here's one of the cool things you can do with Gentoo. You're not forced to stick to the latest version of a package, multiple stable versions might be available simultaneously. So in this case you can mask rsync-3.4.3 to avoid the slop-induced bugs and the package manager will automatically fall back to rsync-3.4.1-r2. See that '-r2' suffix? That's important, it means that it's the base 3.4.1 version plus a set of patches added by the Gentoo maintainers. In this particular case those patches address CVE-2025-10158, so you get the important security fix but avoid the slop issues introduced in the next stable release. Naturally, while the technical brilliance of this system is remarkable, what really shines it the will of Gentoo maintainers to go above and beyond to solve users' issues. Thanks (and donations) should go to them.

https://mastodon.gamedev.place/@JeremiahFieldhaven/116654345332213390

#Gentoo #rsync

CVE-2024-13745 in EDK II (likely, "WONTFIX"): "what you measure is not what you use".

The story about firmware measuring bytes different from ones being used. It affects PCR[5], so the severity is low (nobody cares about PCR[5] by default).

https://www.openwall.com/lists/oss-security/2026/05/29/2

CVE-2026-9999: HIGH severity flaw in Chrome (Mac, <148.0.7778.216) allows remote code execution in the sandbox via crafted HTML. No exploits in the wild. Patch to 148.0.7778.216+ now! https://radar.offseq.com/threat/cve-2026-9999-inappropriate-implementation-in-goog-790503e9 #OffSeq #Chrome #Mac #Vuln #Security

CVE-2025-0066 — Critical supply chain attack in SAP NetWeaver AS for ABAP. Weak access controls allow info disclosure, impacting confidentiality, integrity, and availability. CVSS 9.9. Unpatched. Act now to mitigate risk. #CVE #SAP #infosec

https://www.valtersit.com/cve/CVE-2025-0066/