Sandbox

🔴 Critical | Source: The Register — Security Three critical vulnerabilities in Fortinet’s FortiSandbox product have been actively exploited by unknown attackers in the wild. Patches are available for all three flaws, making urgent remediation essential for any organisation running FortiSandbox. The active exploitation status significantly raises the risk, as attackers are already leveraging these weaknesses before many organisations have had a chance to respond. Security Architect’s Take: If FortiSandbox is deployed anywhere in your environment — on-premises or integrated with cloud workloads — prioritise patching immediately and review logs for indicators of compromise prior to the patch window. Isolate affected appliances from the network if an immediate upgrade is not possible. ...

🟡 Medium | Source: The Register — Security Homebrew 6.0 has been released with a new security mechanism and a Linux sandbox, addressing longstanding concerns about the package manager’s vulnerability to supply chain attacks. The project lead noted that Homebrew has historically been more exposed than npm, making these improvements significant for developer environments. The update represents a meaningful step forward in hardening a widely used tool in macOS and Linux development workflows. ...