• All
  • Company
  • Industry
  • News
  • Partners
CryptoLuck Ransomware Emerges

A new ransomware family spotted for the first time recently is already being distributed via an exploit kit (EK). Dubbed CryptoLuck, the new ransomware variant was discovered by "Kafeine", a Proofpoint researcher and maintainer of the Malware don't need Coffee blog. Noteworthy about the malware is that it abuses the legitimate GoogleUpdate.exe executable and leverages DLL hijacking to infect computers, in addition to asking for a 2.1 Bitcoin (around $1,500) ransom to be...

Read More
Hackers Used Your Vulnerable Tech To Throttle The Internet

Devices were infected to carry out a “sophisticated, highly distributed attack” to wreak online havoc. Hackers unleashed a complex attack on the internet through common devices like webcams and digital recorders and cut access to some of the world’s best-known websites on Friday, a stunning breach of global internet stability. The attacks struck Twitter, Paypal, Spotify and other customers of an infrastructure company in New Hampshire called Dyn, which acts as a...

Read More
FortiOS SSH Update

  On January 13, 2016 we reported about a FortiOS SSH exploit, and it looks like it has a larger scope than originally reported. After the original report, Fortinet further investigated their product line and discovered the same vulnerability on some versions of FortiSwitch, FortiAnalyzer and FortiCache. In a previous statement from Fortinet, they noted that it is not a malicious backdoor, rather an unintentional consequence of a feature that was designed to...

Read More
‘Backdoor’ FortiOS Exploit!

FortiOS is an operating system that powers Fortinet’s firewall platform, FortiGate. On January 9, 2016, an exploit for an SSH backdoor in the FortiGate operating system was posted to the Full Disclosure mailing list.

In a statement released by Fortinet on January 12, 2016, “This was not a ‘backdoor’ vulnerability issue but rather a management authentication issue. The issue was identified by our Product Security team as part of their regular review and testing efforts. After careful analysis and investigation, we were able to verify this issue was not due to any malicious activity by any party, internal or external.” [ii]

If you are a Secure Sense managed customer, do not worry, we already have you covered and have ensured all FortiGate clients are using an updated version of the FortiOS.

If you are currently using FortiOS, and not a Secure Sense managed customer, we urge you to find out which version of FortiOS you are currently using. You are NOT affected by this vulnerability, if you have the following versions. [ii]

  • v4.3.17 or later versions of v4.3
  • v5.0.8 or later versions of v5.0
  • Any version of 2 or 5.4

Any other versions from 4.3.0 – 4.3.16 and 5.0.0 – 5.07. Fortinet is recommending you immediately update your FortiOS product. [iii]

Connect with Secure Sense to protect data, your network, and systems 24/7, 365 days a year. If you have questions or want to learn more, please contact your Secure Sense by calling 866-999-7506.