THE weekly recap paints a picture of risk moving into everyday tools, with Fortinet confirming activity around a FortiCloud SSO authentication bypass on fully patched FortiGate firewalls, tied to an incomplete patch for CVE-2025-59718 and CVE-2025-59719. Keeper Security is described as FedRAMP High Authorized, underscoring the federal emphasis on identity and access management.
The top news also highlights that VoidLink, a Linux malware framework, was largely AI-built, reaching about 88,000 lines of code, signaling increasing AI involvement in malware development. Among the critical CVEs listed, CVE-2026-24061 concerns GNU InetUtils telnetd, CVE-2026-20045 affects Cisco Unified Communications and Webex, and CVE-2026-22755 covers a command-injection in Vivotek legacy firmware, with CVE-2024-37079 added to KEV by CISA.
The roundup notes that 884 vulnerabilities were exploited for the first time in 2025, with edge devices like firewalls frequently targeted, and also flags Contagious Interview’s use of VS Code to deliver a backdoor, reflecting how attackers pivot across multiple vectors in a connected landscape.