Category: CERT

Mar 08

High Veeam Backup & Replication Vulnerability – CVE-2023-27532

By Christopher GLEMOT in Backup, CERT, Security, Veeam, Vulnerability Management

Today, Veeam has released patches for Veeam Backup & Replication v11 and v12. A critical vulnerability (CVSSv3 7.5 – CVE-2023-27532) has been fixed and you should apply the patch as soon as possible. Unauthorized users may be able to request encrypted credentials from the Veeam Backup service, and therefore get access to the backup infrastructure. …

Blue Team, CVE-2023-27532, Infosec, KB4420, KB4424, Veeam, Vulnerability

Mar 07

Critical FortiOS and FortiProxy Vulnerability – FG-IR-23-001

By Christopher GLEMOT in CERT, Cybersecurity, Fortinet, Security, Zero Day

Critical FortiOS and FortiProxy Vulnerability – FG-IR-23-001: Fortinet has just announced a critical vulnerability in all versions. A buffer underwrite (‘buffer underflow’) vulnerability in FortiOS & FortiProxy administrative interface may allow a remote unauthenticated attacker to execute arbitrary code on the device and/or perform a DoS on the GUI, via specifically crafted requests. The impact …

Blue Team, CVE-2023-25610, DoS, FG-IR-23-001, Fortinet, Infosec

Dec 12

Critical Fortigate VPN SSL Vulnerability – CVE-2022-42475

By Christopher GLEMOT in CERT, Cybersecurity, Fortinet, Security, Zero Day

Updated on Tuesday 13, December – Affected versions. Critical VPN SSL Vulnerability (FortiOS): Fortinet has just announced a critical vulnerability in all versions. Vulnerabilities that can be easily exploited remotely to compromise firewall or where remote code execution is considered likely in common situations. Manipulate the dynamic resources of some processes, the goal is to …

CVE-2022-42475, Fortinet, Infosec, Red Team, VPN SSL, Zero Day

Dec 06

The core function of a SOC

By Christopher GLEMOT in CERT, Cybersecurity, Detection & Response, Security Event Management, SOC

The core function of a SOC (Security Operations Center) is to investigate, monitor, prevent, and respond to threats. SOC teams benefit from using a single platform with integrated yet disparate technologies for a full-picture view that is continually updated with emerging threat intelligence. This unified perspective simplifies security monitoring, supports incident response workflows, and provides …

Blue Team, SIEM, SOC

Nov 27

Play ransomware infection routine

By Christopher GLEMOT in Backup, CERT, Ransomware, SOC

A ransomware gang named “Play” was discovered on the Dark Web. Along with them, a list of 22 victims has been revealed. There is a piece of evidence that points to a possible connection between Play ransomware and Quantum ransomware, which is an offshoot of the notorious Conti ransomware group. The Cobalt Strike beacons that …

Blue Team, Cartel, Dark Web, Play, Ransomware as a Service, Reverse, SOC, SOC Analyst, Threat Hunting

Christopher Glémot @c_glemot ·

8 Mar

🔶 @Veeam has published a high #vulnerability in VBR (CVE-2023-27532). Affected component is the Veeam Backup Service. For more information: 👉 https://original-network.com/high-veeam-backup-replication-vulnerability-cve-2023-27532/#more-5517

#infosec #blueteam #security #VeeamVanguard

Reply on Twitter 1633279753615552514 Retweet on Twitter 1633279753615552514 6 Like on Twitter 1633279753615552514 7 Twitter 1633279753615552514

Christopher Glémot @c_glemot ·

8 Mar

🛑@Fortinet has published a critical #vulnerability (CVE-2023-25610 - FG-IR-23-001) that may allow a remote unauthenticated attacker to execute arbitrary code & perform a DoS on the GUI 👉 https://original-network.com/critical-fortigate-vulnerability-fg-ir-23-001/ #infosec #blueteam #security #fortinet

Reply on Twitter 1633261365560242178 Retweet on Twitter 1633261365560242178 8 Like on Twitter 1633261365560242178 7 Twitter 1633261365560242178

Category: CERT

High Veeam Backup & Replication Vulnerability – CVE-2023-27532

Critical FortiOS and FortiProxy Vulnerability – FG-IR-23-001

Critical Fortigate VPN SSL Vulnerability – CVE-2022-42475

The core function of a SOC

Play ransomware infection routine

Follow me

Subscribe to Blog via Email

SPONSORS

About me

Top Posts

Enjoy this blog? Please spread the word :)

Category: CERT

High Veeam Backup & Replication Vulnerability – CVE-2023-27532

Share this:

Critical FortiOS and FortiProxy Vulnerability – FG-IR-23-001

Share this:

Critical Fortigate VPN SSL Vulnerability – CVE-2022-42475

Share this:

The core function of a SOC

Share this:

Play ransomware infection routine

Share this:

Follow me

Subscribe to Blog via Email

SPONSORS

About me

Top Posts

Enjoy this blog? Please spread the word :)