This pack is dominated by two converging threat patterns: unauthenticated critical-severity exploitation of Fortinet FortiClient EMS management infrastructure (CVE-2026-35616 and CVE-2026-21643, both confirmed zero-days as of March 31, 2026) and a targeted supply-chain campaign (‘TrueChaos’) weaponizing trusted software update channels against Southeast Asian government and military networks. All three items carry critical severity, with active exploitation confirmed or strongly indicated across all scenarios. Immediate priority is emergency patching and network isolation of FortiClient EMS instances; parallel action is required to audit TrueConf update integrity in government and defense environments.