Fortinet CVE-2025-64446 Under Active Attack
That vulnerability (CVE-2025-64446) affects several versions of FortiWeb and CISA has added it to its Known Exploited Vulnerabilities catalog.
Author Bio
Dennis Fisher
Editor
Dennis Fisher is an award-winning journalist and author. He is one of the co-founders of Decipher and Threatpost and has been writing about cybersecurity since 2000. Dennis enjoys finding the stories behind the headlines and digging into the motivations and thinking of both defenders and attackers. He is the author of 2.5 novels and once met Shaq. Contact: dennis at decipher.sc.
Featured Articles
Lighthouse Phishing Kit Takedown, Zero Day Mysteries, and Measuring Cyber Attack Costs
This week was a bit of a throwback to olden times, with the disclosure by Amazon threat intelligence of zero days in Cisco and Citrix products that were exploited by an unnamed APT, and Google using legal action to disrupt the Lighthouse phishing service operation. We dig into those two stories, plus we discuss the […]
The Hacker Movie Canon: The Social Network
“You know, you really don’t need a forensics team to get to the bottom of this. If you guys were the inventors of Facebook, you’d have invented Facebook.” Melanie Ensign joins Dennis Fisher and Lindsey O’Donnell-Welch to discuss David Fincher’s massively successful 2010 film, The Social Network, a movie that opens a window into the […]
APT Targets Cisco and Citrix Zero Days
The chain of discovery began with Amazon's security honeypot service, MadPot, which detected exploitation attempts for the Citrix Bleed Two vulnerability (CVE-2025-5777) before its public disclosure
Q&A: Sean Zadig of Yahoo on Employing AI in Security
There are plenty of challenges and pitfalls for security teams looking to deploy AI tools and Zadig said Yahoo is taking a measured, careful approach. This is a condensed and edited portion of our discussion.
Yahoo’s Sean Zadig on How to Raise a Hacker Safely and How Maybe AI Isn’t Changing Everything
Yahoo CISO and Chief Paranoid Sean Zadig returns to the podcast for a discussion with Dennis Fisher about how to go about getting kids interested in technology and teaching them about hacking (in the broad, classical sense) safely (9:10). Then they talk about how rapidly the cybersecurity industry is changing and what effects AI is and is […]