A weekly recap of pertinent security events you need to be aware of and can read in 7 seconds (or so...)

Still Haven't Patched Those Fortinet Firewalls?

Do this: Patch them as soon as possible.
Why: The FBI has released information that suggests APTs are currently searching for and exploiting firewalls without the current security updates—some of which are critical and date back to 2018. Here are the CVEs:

  • CVE 2020-12812 (Critical)
  • CVE 2018-13379 (Critical)
  • CVE 2019-5591 (High)
Additional Info: https://us-cert.cisa.gov/ncas/current-activity/2021/04/02/fbi-cisa-joint-advisory-exploitation-fortinet-fortios

About the Author

Matt Barnett, CISSP, GFCA
Chief Strategist & Cofounder

After years in IT, performing network and system administration, software development, and architecting cloud migrations, Matt began to focus his efforts in cybersecurity. Matt draws on his technical competency and law enforcement background to assist clients, in both proactive and incident response capacities. In addition, Matt has developed an arsenal of applications, strategies, policies, and procedures to assist clients in achieving better cybersecurity.