An unpatched zero-day vulnerability in the Gogs self-hosted Git service can allow attackers to gain remote code execution (RCE) on Internet-facing instances. Designed as an alternative to GitHub Enterprise or GitLab and written in Go, Gogs is often exposed online for remote collaboration. This critical severity argument injection security flaw has yet to be assigned...Read More

Hackers are exploiting an authentication bypass vulnerability (CVE-2026-35616) in FortiClient Enterprise Management Server (EMS) to deliver an undocumented credential stealer called EKZ. The attacker disguised the malware as an update for Fortinet endpoints and executed it through VPN scripting workflows managed by FortiClient. The exploited critical vulnerability is an improper access control flaw that allows...Read More

AI, Identity, and Speed: Cybersecurity Priorities for Higher Ed Fortinet Security Operations Specialist Jason Palm explains how higher education’s rapid adoption of AI raises governance, access control, and acceptable-use questions, while attackers are also using AI to accelerate reconnaissance, credential abuse, brute force, phishing, and other activity, compressing the time to exploit known exposures. He...Read More

DELRAY BEACH, Fla. (CBS12) — A Florida Atlantic University student government member is facing felony charges after police said he traveled to Delray Beach to meet someone he believed was a minor for sex. Walden made his initial court appearance Wednesday morning in West Palm Beach. During the hearing, his mother stood and said to...Read More

The Play ransomware gang is claiming to have stolen data from US pillow manufacturer MyPillow, making off with private and personal confidential data. The claim, which appeared on Play’s dark web leak portal earlier this week, threatens that an undeclared amount of data will be released on Friday, potentially exposing “private and personal confidential data,...Read More

WASHINGTON — A group of House Republicans is pressing FBI Director Kash Patel to sustain aggressive efforts against ransomware gangs that have repeatedly targeted U.S. hospitals, describing the cyberattacks as a growing national security threat that endangers patients and disrupts critical medical care. In a letter sent Thursday, the lawmakers applauded the FBI’s recent initiatives,...Read More

CS V. Srinivas at PHQ in Jaipur Thursday CS V. Srinivas at PHQ in Jaipur Thursday CS V. Srinivas at PHQ in Jaipur Thursday CS V. Srinivas at PHQ in Jaipur Thursday CS V. Srinivas at PHQ in Jaipur Thursday CS V. Srinivas at PHQ in Jaipur Thursday CS V. Srinivas at PHQ in Jaipur...Read More

It starts, like many scams, with a phone call. The threat actor attempts to convince the victim to install a remote desktop management tool, which would grant the hacker access to company systems. But if the victim doesn’t fall for it, this particular hacking group isn’t giving up. According to the FBI, the hacking group,...Read More

About Emily Jarvie Emily began her career as a political journalist for Australian Community Media in Hobart, Tasmania. After she relocated to Toronto, Canada, she reported on business, legal, and scientific developments in the emerging psychedelics sector before joining Proactive in 2022. She brings a strong journalism background with her work featured in newspapers, magazines,...Read More

Agencies will soon have new requirements for logging cybersecurity data to better secure their systems and applications against ever-increasing threats. The Office of Management and Budget’s new memo outlining these changes is one of several ways the Trump administration is recalibrating cyber defenses as the threat of artificial intelligence-fueled cyber attacks increase. Acting Federal Chief...Read More