Fortinet and Ivanti have warned customers that attackers are exploiting new zero day vulnerabilities affecting a range of products. The tech firms published separate advisories on the flaws, one of which is critical, on May 13, urging customers to apply fixes as soon as possible. Cybersecurity vendor Fortinet provided details on a stack-based overflow vulnerability, CVE-2025-32756. An exploit can enable a remote unauthenticated attacker to execute arbitrary code or commands via crafted HTTP requests. The…

In today’s online world, scams are everywhere—and they’re harder to spot than ever. From sophisticated phishing texts and deepfake videos to emails that look just like messages from your bank or delivery provider, scammers are constantly evolving. And so are we.  Introducing McAfee’s Scam Detector: advanced scam detection technology built to spot and stop scams across text messages, emails, and videos. It’s included at no extra cost in all core McAfee plans for customers in…

Decentralization. AI initiatives often need centralized data lakes, while domain-driven models emphasize decentralized ownership. Complex governance. Ensuring data quality, lineage and compliance becomes more challenging as data is federated across domains but consumed centrally by AI models. On-demand data access. AI systems require real-time data access and adaptability, which can collide with the more fixed, process-centric nature of traditional EA frameworks. How can modern EA bridge the gap? According to Dharani Pothula, “Enterprise architects need…

Fortinet has observed threat actors exploiting CVE-2025-32756, a critical zero-day arbitrary code execution vulnerability which affects multiple Fortinet products including FortiVoice, FortiMail, FortiNDR, FortiRecorder and FortiCamera. Background On May 13th, Fortinet published a security advisory (FG-IR-25-254) for CVE-2025-32756, a critical arbitrary code execution vulnerability affecting multiple Fortinet products. CVE Description CVSSv3 CVE-2025-32756 An arbitrary code execution vulnerability in FortiVoice, FortiMail, FortiNDR, FortiRecorder and FortiCamera 9.6 Analysis CVE-2025-32756 is an arbitrary code execution vulnerability affecting multiple…

A new strain of infostealer blending standard malware techniques with unusually advanced features has been detected. First flagged by a Reddit user in April 2025, the malware, known as Chihuahua Stealer, was analyzed by G Data CyberDefense, which shared its findings in a May 13 report. While appearing unsophisticated on the surface, this .NET infostealer employs advanced methods, including stealthy loading, scheduled task persistence and a multi-staged payload. Multi-Stage PowerShell Script Infection On April 9,…

INE Security, a global leader in hands-on cybersecurity training and certifications, today highlighted how ongoing real-world practice with the latest CVEs (Common Vulnerabilities and Exposures) is essential for transforming security teams from reactive to proactive defenders. With over 26,000 new CVEs documented in the past year, security teams are drowning in vulnerability alerts while facing exploit windows that have compressed to hours in many cases. “Reading CVE bulletins is not the same as knowing how…

Law enforcement agencies in five regions have joined forces to take down an organized crime group responsible for defrauding scores of victims, according to Europol. The European police group claimed that at least 100 victims have been defrauded to the tune of over €3m ($3.4m), by a criminal network offering them high returns on fake investment opportunities. The operation began nearly three years ago in Germany, when a married couple reportedly notified local police that…