Threat Actors Exploit Critical FortiClient EMS Flaw to Deploy Credential Stealer 
Critical Gogs RCE Vulnerability Lets Any Authenticated User Execute Arbitrary Code 
NSAuditor AI EE 0.15.3 Closes the 4th and Final S3 Public-Exposure Vector with Object-Level ACL Enumeration and a BucketOwnerEnforced Upstream Short-Circuit 
NSAuditor AI EE 0.15.x Cumulative — NEW Plugin 1222 Azure Key Vault Deep Auditor (27 → 28), Plus Audit-Accuracy Calibration and CloudTrail Hardening Across 0.15.0, 0.15.1, and 0.15.2 
Malicious npm Package Stole Files From Claude AI User Directory via GitHub 
“NSAuditor AI EE 0.6.6 Launches with Advanced Security Features to Combat Multi-Hop Threats”
NSAuditor AI EE Version 0.6.6 Released with Enhanced Security Features In an important update for cybersecurity professionals, NSAuditor has rolled...
NSAuditor AI EE 0.6.5: sessionToken Sweep + Dead-Target Liveness Probes Close Two Real-World Audit Gaps
Nsasoft US LLC today shipped NSAuditor AI Enterprise Edition v0.6.5, closing two deferred items from the EE 0.6.4 reviewer pass:...
NSAuditor AI EE 0.6.4: EventBridge Target Verification Closes Substrate-Without-Sink False-PASS at the Rule Level
Nsasoft US LLC today shipped NSAuditor AI Enterprise Edition v0.6.4, closing the substrate-without-sink false-PASS class at the rule level in...
CISA Admin Leaked AWS GovCloud Keys on Github
What's new: A contractor for the Cybersecurity & Infrastructure Security Agency (CISA) publicly exposed AWS GovCloud credentials and internal CISA...
MiniPlasma Windows 0-Day Enables SYSTEM Privilege Escalation on Fully Patched Systems
What's new: A newly disclosed Windows zero-day vulnerability, codenamed MiniPlasma, allows attackers to escalate privileges to SYSTEM on fully patched...