De gevaarlijkste inbraak van deze week ging niet door de voordeur van de slachtoffers, maar via hun sleutelbeheerder.
Elke dag een nieuwe vraag die je kunt beantwoorden op https://www.ccinfo.nl
Weet u welke externe partijen toegang hebben tot de firewalls en systemen van uw organisatie?
#Cybersecurity #Fortinet #SupplyChain #Informatiebeveiliging #Belgie
📰 FortiSandbox Vulnerabilities Chained for Root-Level Takeover, Active Exploits in Wild
🚨 ACTIVE EXPLOITATION: Threat actors are chaining three FortiSandbox vulnerabilities (CVE-2026-39813, et al.) for unauthenticated RCE and full root takeover. Patch immediately to prevent sandbox compromise. #infosec #vulnerability #fortinet
🌐 cyber[.]netsecops[.]io
#FortiBleed campaign used custom #FortiGate sniffer to steal credentials
A campanha cibernética FortiBleed está a visar mais de 430 mil dispositivos FortiGate da Fortinet em todo o mundo. Estes ataques utilizam ferramentas personalizadas para intercetar e roubar credenciais de autenticação diretamente de firewalls 🔒
En it-sikkerheds-ekspert og Forsvarets Efterretningstjeneste opfordrer danske #Fortinet -kunder til at tage en række forholds-regler i kølvandet på et omfattende data-læk
I en omfattende cyber-aktion har stribevis af virksomheder verden over fået lækket login-oplysningerne til de sikkerheds-løsninger, der normalt hjælper med at holde ubudne gæster ude af deres it-systemer
Det er konsekvensen af den såkaldte Fortibleed-kampagne
https://ing.dk/artikel/dsv-maersk-og-dansk-politi-ramt-af-globalt-datalaek-fe-advarer-danske-virksomheder (paywalled)
Ya know the thing I hate the most about #Fortinet? It isn't the ridiculously terrible code that has lead to numerous exploits. It isn't the absolutely shit hardware quality. It isn't even the fact that _every_ fucking product is called FortiSomething.
Although that last one is really fucking annoying.
It's that the FortiOS configuration is essentially a write once only thing. Any objects you create that become depended on by other objects, basically become immutable, or at least very firmly entrenched. To make changes or insert something new into the mix that changes the dependency hierarchy of objects will usually require massive changes. Often times, your only option is to delete huge sections of configuration, insert the new stuff, and then put the configuration right back again.
It fucking sucks.
Maybe they've fixed this in the 18+ months it has been since I have touched a Fortinet device, but I kind of doubt it. Fortinet has shown as a company, if nothing else, that they are dead set in their ways.
Please stop buying Fortinet products, you aren't buying security. You are paying money to have open exploits on your network, coupled with terrible network management tools.
Massive breach spills credentials for thousands of sensitive networks
Researchers have uncovered a massive breach of Fortinet firewalls that has given Russian-speaking attackers near-unrestricted access to some of the world’s largest and most powerful organizations, including Oracle, Chevron, Lenovo, Federal Express, a NATO defense contractor, and Fortinet itself.
#Fortinet #databreach #security #cybersecurity #hackers #hacking #hacked
NCSC Warns Fortinet Customers of Credential Theft Fallout
A massive database of 75,000 stolen credentials, including usernames, email addresses, and passwords, has been discovered, putting organisations like Oracle, Spotify, and AT&T at risk. The leak, dubbed "FortiBleed," affects customers in 194 countries and over 21,000 domains, with nearly half of all internet-accessible Fortinet firewalls…
#Fortinet #CredentialTheft #Fortibleed #EmergingThreats #SupplyChain
Meg4R0M
ccinfo.nl
CyberNetsecIO
The New Oil
@paralell.eu
TugaTech 🖥️
#cryptohagen
The Psychotic Network Ferret
gtbarry
Analyst207