Critical Vulnerabilities Emerge: FortiManager and Cisco VPNs Under Threat
Critical Vulnerabilities Emerge: FortiManager and Cisco VPNs Under Threat
Today, cybersecurity experts are on high alert following the discovery of a critical zero-day vulnerability in FortiManager, a management platform for Fortinet devices. If exploited, this flaw could allow attackers to execute arbitrary code, necessitating immediate patches from affected organizations. FortiNet has advised all users to implement the latest updates as soon as possible to mitigate risk.
Concurrently, Cisco has reported a significant vulnerability in its Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD) VPNs. This vulnerability enables unauthorized access to sensitive data, posing a severe threat to users who have not upgraded to the latest software versions.
Both incidents underline the urgent need for robust patch management and security vigilance across all sectors.
Also In Security Today
- Embargo Ransomware Group: The Embargo ransomware group is now exploiting Windows Safe Mode to bypass detection mechanisms, raising alarms for businesses to enhance their endpoint security. Source
- Conduent Data Breach: Conduent has reported a significant data breach affecting multiple state agencies, stemming from an intrusion earlier this month. The fallout highlights vulnerabilities in service-provider security. Source
- Internet Archive Breaches: The Internet Archive has faced two security incidents in October, leading to compromised user data due to outdated access tokens, raising concerns about the platform's security measures. Source