Indicators of Compromise

Fortinet Confirms Critical FortiWeb Zero-Day Is Being Exploited as CISA Sets Nov. 21 Patch Deadline

The flaw, now tracked as CVE-2025-64446, was quietly fixed in version 8.0.2 after researchers observed attackers creating administrator accounts on internet-facing devices.