The Patch Tuesday cycle has begun once again and the team at Fortinet has announced some of the conditions surrounding several of the Windows and Office related patches that have been released by Microsoft. Please review your environments and patch your systems accordingly.
Fortinet
Five Cyber Threats Every Security Leader Must Know About
Though a bit sales’y, this is a nice overview of 5 core cyber threats all security professionals should be pondering. Enjoy!
https://blog.fortinet.com/2017/09/20/five-cyber-threats-every-security-leader-must-know-about
CIPA Compliance and Cybersecurity: You Can’t Have One Without the Other
Though unabashedly sales centric, this blog post by Fortinet provides a good overview of the intentions and goals associated with CIPA (Children’s Internet Protection Act). It is well worth a read as both a parent and a potential technology provider in the K-12 space.
Industry pros react to Cisco, Fortinet advisories after possible Snowden NSA leak
Is anyone honestly surprised by this revelation? Let us not forget the photographs provided back during the Prism discussions of NSA employees opening Cisco hardware boxes, altering firmware and repackaging devices. Regardless one which side of the Snowden debate you find yourself, I think we can all agree that vulnerabilities and backdoors create weaknesses in products and services, despite the best or worst intentions of the people who placed them there.
Securing Business-to-Business Environments
Marketing value aside, this is good, sound advice from the team at Fortinet. Please take a moment to review the recommendations in this article and consider the value of segmentation and monitoring for your B2B connections.
http://blog.fortinet.com/2016/05/25/securing-business-to-business-environments
Get Ahead of Evolving Healthcare Cyberthreats
For everyone in the Healthcare space, this is a good conversation with Don Kopanoff of Fortinet on cyber threats associated with Healthcare.
http://blog.fortinet.com/post/get-ahead-of-evolving-healthcare-cyberthreats
10 Steps for Protecting Yourself From Ransomware
This is a very thorough and sound post by the team over at Fortinet on ransomware, the do’s and don’t’s, and some best practices. It is well worth a read.
http://blog.fortinet.com/post/10-steps-for-protecting-yourself-from-ransomware
Cyber Threat Assessment: Threat Landscape Report
The CTAP program at Fortinet is a great initiative designed to help organizations better understand the threats in their environments and the value a UTM can bring to overall network security. I love that Fortinet has consolidated this data in the form of this landscape report. It is quite eye opening.
http://blog.fortinet.com/post/cyber-threat-assessment-threat-landscape-report
Brief Statement Regarding Issues Found with FortiOS
This linked article from Fortinet details their response to the reported vulnerability in FortiOS concerning SSH and admin passwords. Please pay cloase attention to the FortiOS versions involved and make note that SSH must be enabled on an active interface via a firewall rule for this vulnerability to be leveraged.
http://blog.fortinet.com/post/brief-statement-regarding-issues-found-with-fortios
New CryptoWall Variant In The Wild
This is a detailed explanation by the team at Fortinet of a new variant of CryptoWall. Please take note. This article also includes the hash variables necessary for IPS and other content filters.
http://blog.fortinet.com/post/new-cryptowall-variant-in-the-wild