Attackers exploit FortiClient EMS vulnerability (CVE-2026-35616) to deliver infostealer to enterprise devices
Attackers are delivering an infostealer to enterprise computers by exploiting a known vulnerability (CVE-2026-35616) in FortiClient EMS.
Read the full articleYou might also wanna read
Fortinet FortiClient EMS vulnerability: CVE-2026-35616
Certain versions of FortiClient EMS are susceptible to an API auth and authorization bypass vulnerability. Here's how to find impacted asset

FortiBleed Campaign Harvests 110M+ Credentials, Fuels Ransomware Operations
A critical credential-harvesting campaign dubbed “FortiBleed” has been exposed, systematically targeting over 430,000 FortiGate firewalls wo

WAF - WAF Release - 2026-04-15
This week's release introduces a new detection for a critical Remote Code Execution (RCE) vulnerability in Mesop (CVE-2026-33057), alongside
CVE-2026-15321: Cross Site Scripting in MyEMS
CVE-2026-15321 is a cross-site scripting (XSS) vulnerability in MyEMS affecting versions 6.0 through 6.4.0. The issue exists in the on_post
Technical Analysis of CVE-2025-10035: A CVSS 10.0 Vulnerability in Fortra GoAnywhere MFT
File transfer used to be simple fun - fire up your favourite FTP client, log in to a glFTPd site, and you were done. Fast forward to 2025, a
labs.watchtowr.com·9mo agoCVE-2026-27690: CWE-444: Inconsistent Interpretation of HTTP Requests in SAP_SE SAP Approuter
CVE-2026-27690 is an HTTP Request Smuggling vulnerability in SAP Approuter that allows an unauthenticated attacker to send specially crafted

Comments
Sign in to join the conversation.
No comments yet. Be the first.