Security Boulevard

Attacking the MCP Trust Boundary

Every secure API draws a line between code and data. HTTP separates headers from bodies. SQL has prepared statements. Even email distinguishes the envelope from the message. The Model Context Protocol ...
Bleeping Computer

Critical Fortinet Forticlient EMS flaw now exploited in attacks

Attackers are now actively exploiting a critical vulnerability in Fortinet's FortiClient EMS platform, according to threat intelligence company Defused. Tracked as CVE-2026-21643, this SQL injection ...
CSOonline

Fortinet hit by another exploited cybersecurity flaw

A critical SQL injection flaw in FortiClient EMS allows remote code execution and data exfiltration, leaving thousands of internet facing systems at risk. Yet another critical flaw in a Fortinet ...
National Institute for Health and Care Excellence

Injection for more than a million people to help prevent heart attacks and strokes recommended

People who have had a heart attack, stroke, or serious circulation problem in their legs, and who also carry excess weight, can now be offered a weekly injection to help protect them from a further ...
Palm Beach Post

New CIS Report Warns Prompt Injection Attacks Pose Growing Risk to Generative AI

This report makes clear that technical prompt injections aren’t a theoretical problem, they’re a real and immediate risk.” — TJ Sayers, Senior Director of Threat Intelligence at CIS CLIFTON PARK, NY, ...
The Hacker News

⚡ Weekly Recap: Vercel Hack, Push Fraud, QEMU Abused, New Android RATs Emerge & More

Monday cybersecurity recap on evolving threats, trusted tool abuse, stealthy in-memory attacks, and shifting access patterns.