Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: Financial groups lay out a plan to fight AI identity attacks Generative AI tools have brought the cost of deepfake production low enough that criminals and state…
Week in review: Axios npm supply chain compromise, critical FortiClient EMS bugs exploited
A supply chain compromise in the Axios npm package led to malicious code execution in dependent applications, while critical vulnerabilities in Fortinet's FortiClient EMS were actively exploited to gain unauthorized access. These attacks impact organizations using affected npm packages or FortiClient EMS versions prior to 7.2.2, potentially enabling data theft, lateral movement, or full system compromise.