Skip to content

Multiple FortiGate Models Affected by Backdoor

FortiGate devices with enabled SSL-VPN were compromised through three critical vulnerabilities, allowing attackers to install backdoors and gain read access to file systems; up to 840 devices in Austria are affected, and Fortinet has released patches and remediation measures.

Share on:

DOGE, CISA, Mitre and CVE: The Infrastructure of Vulnerability Management

DOGE’s planned defunding of the CVE system was reversed after industry pressure—funding is now secured for eleven months. The CVE system provides organizations with a unified foundation for systematic vulnerability management. In parallel, additional national and specialized identification systems exist, whose coordina

Share on:

Passwords Call on Forever

Passwords remain central to IT security despite alternatives like passkeys; NIST recommends no forced regular password changes, but immediate replacement upon compromise; secure implementation requires TLS encryption, hashed storage, complexity checks, and brute-force protection.

Share on:

A Brief Look at the NISG 2026

The NISG 2026 contains unclear provisions on CSIRT capabilities stemming from a rejected EU Parliament draft, and Recital 44 on monitoring internet assets lacks a corresponding article, creating interpretation uncertainty.

Share on: