Mike Bell · @mikebell
56 followers · 230 posts · Server remotelab.uk

Long shot but we have a SSL VPN connection with specific DNS servers, we've updated them but the isn't picking up the new IPs, any idea what might be up?

#fortigate #forticlient

Last updated 1 year ago

Moti · @Moti
13 followers · 47 posts · Server mastodon.sdf.org

For Various reasons, I'm going to work one some certs for my Resume. Got plenty of real life experience, but i do feel i need this.
, Maybe some cloud or , haven't decided (also: no experience).
First: CCNA.
Tools for the Job for taking notes. Odom's OCG, And probably Neil Anderson's course on udemy, And tracer, probably Netsim later on.
I was thinking to blog my journey (? ?) also need to be decided.

.

#ccna #rhcsa #fortigate #aws #azure #bearapp #gns3 #packet #boson #medium #github #ccnajourney

Last updated 1 year ago

fthy · @fthy
9 followers · 86 posts · Server mastodon.green

fortiguard.com/psirt/FG-IR-23- Critical vulnerability in fortigate v7.x when using deep-packet-inspection for ssl/tls in proxy-based inspection mode (not flowbased inspection) - CVSS 9.8

#infosec #fortigate #vulnerability #Fortinet

Last updated 1 year ago

zyk · @zyk
767 followers · 401 posts · Server mastodon.nz

This one looks horrible:
A stack-based overflow vulnerability [CWE-124] in FortiOS & FortiProxy may allow a remote attacker to execute arbitrary code or command via crafted packets reaching proxy policies or firewall policies with proxy mode alongside SSL deep packet inspection.

FortiOS version 7.2.0 through 7.2.3
FortiOS version 7.0.0 through 7.0.10
FortiProxy version 7.2.0 through 7.2.2
FortiProxy version 7.0.0 through 7.0.9

fortiguard.com/psirt/FG-IR-23-

#fortigate #vuln #cvss #arbexec

Last updated 1 year ago

Anonymous :anarchism: 🏴 · @YourAnonRiots
5841 followers · 36147 posts · Server mstdn.social

Of the total 490,000 public internet-exposed Fortinet FortiOS and FortiProxy SSL-VPNs interfaces scanned by Shodan, 69% are vulnerable to this .

hackread.com/rce-vulnerability

#CyberSecurity #VPN #fortigate #fortinet #Security #vulnerability

Last updated 1 year ago

Poetry News · @haikubot
831 followers · 8605 posts · Server mastodon.cloud

We commend those who have patched their servers
Protecting against this critical flaw
For those who remain unpatched
We urge you not to hesitate
Protect yourselves before it’s too late

arstechnica.com/security/2023/

#serversecurity #cybersecurity #fortigate #cyberattack #ode #poetry

Last updated 1 year ago

PrivacyDigest · @PrivacyDigest
399 followers · 1654 posts · Server mas.to

336,000 remain unpatched against critical arstechnica.com/?p=1951654

#vulnerability #fortigate #servers

Last updated 1 year ago

JorJorBinks :openbsd: · @jordan_kendrick
39 followers · 159 posts · Server fosstodon.org

Glad I upgraded our on Friday instead of waiting until right before patch Tuesday. Pre-auth, MFA bypassing, fuck all zero day RCE. Props to for the quick patch!

#fortigate #fortinet

Last updated 1 year ago

Kevin Beaumont · @GossiTheDog
27861 followers · 1053 posts · Server cyberplace.social
Marko Jahnke · @markojahnke
113 followers · 361 posts · Server bonn.social

-- Nomen est omen.

Why give a company a name that sounds pretty close to the biggest political scandal in the US in the 1970s?

Probably to make it more robust against all possible fails and scandals.

If you count the critical in their products, this obviously worked pretty well.

bleepingcomputer.com/news/secu

#fortigate #rce #infosec #cves

Last updated 1 year ago

Andrea Fortuna :verified: · @andreafortuna
150 followers · 157 posts · Server mastodon.uno
Redhotcyber · @redhotcyber
513 followers · 1285 posts · Server mastodon.bida.im

Una nuova RCE colpisce Fortinet. Aggiornare il firmware di FortiOS immediatamente

Una ricerca di ha rivelato che da Internet è possibile raggiungere oltre 250.000 e poiché questo riguarda tutte le versioni precedenti, la maggior parte di questi famosi è probabilmente esposta.

Fortinet ha rilasciato del per i suoi dispositivi Fortigate, affrontando una di esecuzione di remoto () di pre-autenticazione nei dispositivi SSL VPN.

redhotcyber.com/post/una-nuova

#shodan #firewall #fortigate #bug #appliance #aggiornamenti #firmware #vulnerabilità #critica #codice #rce #redhotcyber #informationsecurity #ethicalhacking #dataprotection #hacking #cybersecurity #cybercrime #CyberSecurityAwareness #cybersecuritytraining #CyberSecurityNews #privacy #infosecurity

Last updated 1 year ago

Kevin Beaumont · @GossiTheDog
27752 followers · 1067 posts · Server cyberplace.social

Upgrade your firewalls that have SSL VPN enabled to the latest release. There is a remotely exploitable, preauth vuln.

Get to FortiOS version 7.2.5, 7.0.12, 6.4.13, 6.2.15, 6.0.17 or above — patches out now.

HT to @log4jmc who caused me to go looking. CVE, disclosure and technical details drop this Tuesday.

#fortigate #threatintel

Last updated 1 year ago

benzogaga33 · @benzogaga33
720 followers · 21439 posts · Server mamot.fr
k3ym0 · @k3ym0
267 followers · 130 posts · Server infosec.exchange

❗​Critical (9.3 CVSS) CVE dropped for today. I recommend applying mitigations and updating your firewalls ASAP.

FortiGuard PSIRT: fortiguard.com/psirt/FG-IR-23-

Best Practices that mitigate this vuln:

  • Don't expose your admin interfaces to the internet
  • Use non-standard ports for your admin access (not 80/443)
  • Configure a Local In policy to limit IP addresses that can reach the admin interface (preferably to a set of jump hosts or Privileged Access Workstations)

#fortios #fortigate

Last updated 2 years ago

log4jmc · @log4jmc
129 followers · 212 posts · Server infosec.exchange

got my units and clusters all up to 6.4.12 and with that, I'm off 'til Tuesday *mic drop*

#fortigate

Last updated 2 years ago

sekurak News · @sekurakbot
30 followers · 232 posts · Server mastodon.com.pl

Kolejna krytyczna podatność w produkcie Fortinetu (FortiNAS) – można bez uwierzytelnienia uzyskać uprawnienia roota. Łatajcie się.

Trochę pechowo – podatność RCE zlokalizowano w produkcie FortiNAS („Secure Network Access Control”). No więc w przypadku tej podatności nie było żadnego „access control”, bo bez logowania można uzyskać dostęp roota na urządzeniu: Jak widać, jedyne co jest potrzebne to dostęp sieciowy do urządzenia. PoC / Exploit ma pojawić się...


sekurak.pl/kolejna-krytyczna-p

#wbiegu #fortigate #nac #podatnosci

Last updated 2 years ago

Raphael · @0x3e4
32 followers · 97 posts · Server shitcoin.land

FortiOS 7.2.4 with a neat default behavior change:
"For new firewall policies with a deny action, set match-vip is enabled by default. When upgrading from a previous version, existing policy settings for match-vip are preserved."

#fortigate #fortios #fortinet

Last updated 2 years ago

Jake in Oregon 👾 :barnaby: · @codejake
68 followers · 190 posts · Server hachyderm.io
The Network DNA · @thenetworkdna
1 followers · 21 posts · Server mastodon.world