Cybersecurity Today AWS Flaw Could Have Put Every Account At Risk
9 snips
Jan 26, 2026 Active exploits of a Fortinet SAML SSO flaw and partial fixes still in play. Windows 11 January updates causing unbootable systems on some devices. A failed Sandworm wiper attack aimed at Poland's energy infrastructure. A sophisticated phishing AITM campaign stealing session cookies and bypassing MFA. A near-miss AWS CodeBuild regex bug that could have compromised SDK supply chains.
AI Snips
Chapters
Transcript
Episode notes
SAML Flaw Bypasses Patched Fortinet Devices
- Fortinet's SAML vulnerability allowed automated admin creation and rapid configuration export even on patched devices.
- Fortinet warns the flaw affects all SAML-based SSO and is working on a comprehensive fix.
Immediate Mitigations For Fortinet Customers
- Restrict administrative access to trusted IPs and disable FortiCloud SSO where possible as interim mitigations.
- Treat compromised systems as fully breached and rotate credentials during incident response.
Windows 11 Patch Caused Boot Failures
- January Windows 11 updates caused an unmountable boot volume error on some physical devices.
- Microsoft asked affected users to submit diagnostics while it investigates whether the update caused a regression.