The article highlights two primary threats: a supply chain compromise involving the Axios npm package and the active exploitation of critical vulnerabilities in FortiClient EMS. Specific technical details regarding the attack vectors, CVSS scores, and affected version ranges for these incidents are not provided in the source text. IT professionals should consult official advisories from Fortinet and the npm registry for patching and mitigation guidance.
Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: Financial groups lay out a plan to fight AI identity attacks Generative AI tools have brought the cost of deepfake production low enough that criminals and state-sponsored actors now use them routinely against financial institutions. A joint paper from the American Bankers Association, the Better Identity Coalition, and the Financial Services Sector Coordinating Council lays out the scale of the … More → The post Week in review: Axios npm supply chain compromise, critical FortiClient EMS bugs exploited appeared first on Help Net Security .