Advertisement
VU
CRITICAL
Vulnerabilities
CVE-2026-35616: FortiClient EMS Exploit Delivers EKZ Infostealer
Attackers are actively exploiting CVE-2026-35616, an authentication bypass in FortiClient EMS, to deploy the EKZ infostealer. Protect your organization now.
Runtime Rebel Intel
4 min read·May 28, 2026
CRITICAL
Vulnerabilities
FortiClient EMS Critical Flaw Exploited for Credential Stealing
Threat actors are actively exploiting a critical, patched FortiClient EMS vulnerability to deploy credential-stealing malware, bypassing trusted endpoint security.
Runtime Rebel Intel
5 min read·May 28, 2026
HIGH
Supply Chain
Nx Console 18.95.0 Compromise: VS Code Extension Credential Stealer
Security researchers have identified a compromised version of the Nx Console VS Code extension (18.95.0) containing a malicious credential stealer.
Runtime Rebel Intel
3 min read·May 19, 2026
SU
HIGH
Supply Chain
Shai-Hulud Supply Chain Attack: Malicious npm and Mistral Packages
The Shai-Hulud campaign targets developers with over 300 signed npm and PyPI packages impersonating TanStack and Mistral to steal sensitive credentials.
Runtime Rebel Intel
3 min read·May 12, 2026