Skip to main content

Tag: endpoint management

10 articles

Fortinet Flaw Exploited to Deploy Credential Stealer

Hackers have exploited a critical Fortinet flaw, CVE-2026-35616, to turn trusted systems into a launchpad for a sneaky new credential-stealing campaign. This vulnerability, with a near-perfect CVSS score of 9.1, allowed attackers to bypass security and wreak havoc.

Analyst 207
Diverse IT team gathered around a monitor in a corporate office setting.

Microsoft Enhances App Removal Policy for Windows 11 Enterprises

Microsoft just made it easier for IT admins to manage Microsoft Store apps on Windows 11 devices - you can now dynamically remove preinstalled apps across your enterprise using a simple policy update. Just reference the Package Family Name (PFN) to uninstall any unwanted MSIX/APPX apps.

Analyst 207
Fortinet Zero-Day Flaw Exploited in Active Attacks

Fortinet Zero-Day Flaw Exploited in Active Attacks

A critical Fortinet zero-day flaw is under active attack, allowing hackers to remotely take control of vulnerable endpoint management servers without authentication - leaving organizations with a pressing choice: patch now or risk a devastating breach. Immediate action is crucial, as attackers have already begun exploiting these vulnerabilities to execute malicious code and commands.

Analyst 207
Fortinet Exploits Critical FortiClient EMS Flaw in Alarming Attacks

Fortinet Exploits Critical FortiClient EMS Flaw in Alarming Attacks

A critical vulnerability in Fortinet's FortiClient EMS platform is under active attack, sparking urgent concerns about the security of networks and systems that rely on this widely-used endpoint management solution. Can your organization afford to wait for the next patch when attackers are already exploiting this gaping hole?

Analyst 207
China-Linked Tick Group Exclusive: Critical Lanscope 0-day

China-Linked Tick Group Exclusive: Critical Lanscope 0-day

Think of it as the patch arriving after someone already walked through the door — a critical CVE‑2025‑61932 (CVSS 9.3) zero‑day in Motex Lanscope has been weaponized in the wild by the China‑linked Tick group. The flaw allows unauthenticated SYSTEM‑level command execution on on‑prem Lanscope servers, so if you run Lanscope, find exposed instances, isolate them from untrusted networks, and apply mitigations or updates immediately.

Analyst 207
Lanscope Endpoint Manager Exclusive Critical Bug Alert

Lanscope Endpoint Manager Exclusive Critical Bug Alert

If you use Lanscope Endpoint Manager, treat this as urgent—CISA has added CVE-2025-61932 to its Known Exploited Vulnerabilities list and says it’s being actively exploited. Act now: inventory on‑prem Clients, apply patches or mitigations, tighten admin access, and hunt for signs of compromise.

Analyst 207
Lanscope Endpoint Manager Exclusive: Critical Bug Exploited

Lanscope Endpoint Manager Exclusive: Critical Bug Exploited

A critical, actively exploited flaw in Motex Lanscope Endpoint Manager (CVE-2025-61932) — now on CISA’s KEV list — can turn your endpoint manager into an attacker’s shortcut. If you run on‑prem Lanscope Client, act now: patch immediately, isolate affected hosts, and hunt for suspicious activity.

Analyst 207
malware vaccines: Must-Have or Risky Defense?

malware vaccines: Must-Have or Risky Defense?

Imagine tricking ransomware into thinking your Windows PC is already looted — that’s the bold idea behind “malware vaccines,” tiny spoofing markers meant to steer attackers away before they strike. Promising but far from foolproof, these proactive defenses could reduce hits if carefully tested and managed, yet they also risk breaking software, legal headaches, and an inevitable adversary response.

Analyst 207
RMM tools Must-Have: Stunning Best Defenses

RMM tools Must-Have: Stunning Best Defenses

Attackers are weaponizing legitimate remote-management tools with convincing phishing that tricks users into installing or granting access—letting them move laterally, steal data, or deploy ransomware. Learn practical defenses—from behavioral analytics and least-privilege RMM setups to MFA, segmentation, and clear user procedures—that stop these dual-use tools from becoming a corporate catastrophe.

Analyst 207
Trend Micro vulnerability: Risky, Stunning Security Failure

Trend Micro vulnerability: Risky, Stunning Security Failure

Trend Micro’s Apex One management console has a critical, actively exploited vulnerability with no patch available, leaving organizations exposed and customer trust at risk. It’s a wake-up call for greater transparency, faster fixes, and heightened vigilance from both vendors and users.

Analyst 207