Today’s Briefing
CISA and the NCSC have both issued urgent advisories following global targeting of Fortinet firewalls and VPN gateways in a campaign designated FortiBleed, which involves the exposure of compromised credentials for approximately 74,000 internet-accessible Fortinet devices across government and private sector organisations. Separately, CISA added CVE-2026-20253 to the Known Exploited Vulnerabilities catalogue, a missing authentication flaw in Splunk Enterprise that permits unauthenticated file creation or truncation through a PostgreSQL sidecar service endpoint. Google Threat Intelligence published reporting on a North Korea-nexus supply chain compromise of the widely used Axios NPM package.
Top Stories
Full brief available to subscribers
The complete operator brief — action items with patch deadlines, the vulnerability appendix and named actor activity — goes out by email each morning. Subscribe free to receive it.
Get the brief at 07:00, every weekday.
The day's UK security intelligence, read and ranked so you start informed: the stories that matter, the IOCs your SIEM needs, and the actions worth taking first.