Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

On November 13, 2025, open source reporting began detailing active exploitation of a silently patched Fortinet FortiWeb vulnerability. The flaw is a path traversal issue in the FortiWeb web application firewall (WAF) that allows an unauthenticated threat actor to create new administrative users on exposed devices. The following day, November 14, Fortinet officially addressed the vulnerability in an advisory, tracking it as CVE‑2025‑64446.

FedRAMP is a government-wide program meant to ensure a standardized baseline for information security throughout the cloud service providers working with the federal government. It’s a tall order. Setting forth standards that are robust enough to cover all the bases, while being open and flexible enough to cover every CSP, is not easy.

Let’s face it: running a business today means dealing with threats you can’t even see. The Dark Web isn’t some fictional boogeyman; it’s a bustling, digital black market where cybercriminals are constantly plotting, selling, and trading the very keys to your company’s kingdom. If you’re relying solely on traditional firewalls and antivirus, you’re missing the biggest, most proactive move you can make: getting eyes on the Dark Web.

2025 has been a defining year for identity security, marked by a rapid increase in the volume, variety, and velocity of identities that organizations must now govern. The changes have been building for a long time, as identity tools have evolved from early single sign-on solutions and compliance-driven governance to the cloud-first, AI-powered world we live in now, which must enable employees with the access they need at lightning speed while maintaining security.

In this blog, we will navigate through a few enterprise-proven methods to make API key more secure. Read on!

Understanding the Deep Web and Dark Web is essential for CISOs navigating today’s threat landscape. This blog breaks down their differences, the risks they pose, and how intelligence-led monitoring helps organisations detect, prevent, and respond to cyber threats before they escalate.

On November 13, 2025, the United States’ Federal Bureau of Investigation (FBI), Cybersecurity and Infrastructure Security Agency (CISA), Department of Defense Cyber Crime Center (DC3), and Department of Health and Human Services (HHS) released a joint Cybersecurity Alert regarding Akira ransomware in conjunction with a number of additional authoring organizations, including Europol’s European Cybercrime Centre (EC3); France’s Office Anti-Cybercriminalite (OFAC)

A critical zero-day, CVE-2025-64446, path-traversal vulnerability in Fortinet FortiWeb, the company’s Web Application Firewall (WAF), is being actively exploited in the wild to create unauthorized administrator accounts on exposed systems. This flaw allows unauthenticated attackers to gain complete administrator access to affected devices.

For most IT operations teams, capacity management is a balancing act. Too much capacity and costs spiral; too little and users feel the impact before you do. On paper, scaling should be simple. In reality, it’s anything but. Most teams still scale manually – waiting for alerts, logging into consoles, adjusting resources, and hoping they’re not overdoing it. It’s a pattern that feels safe because it’s familiar, but it’s quietly expensive.

Welcome to The researcher’s desk – a content series where the Detectify security research team conducts a technical autopsy on vulnerabilities that are particularly interesting, complex, or persistent. The goal here is not to report the latest research (for which you can refer to the Detectify release log); it is to take a closer look at certain vulnerabilities, regardless of their disclosure date, that still offer critical lessons.