Category: Cybersecurity

Mar 07

Critical FortiOS and FortiProxy Vulnerability – FG-IR-23-001

By Christopher GLEMOT in CERT, Cybersecurity, Fortinet, Security, Zero Day

Critical FortiOS and FortiProxy Vulnerability – FG-IR-23-001: Fortinet has just announced a critical vulnerability in all versions. A buffer underwrite (‘buffer underflow’) vulnerability in FortiOS & FortiProxy administrative interface may allow a remote unauthenticated attacker to execute arbitrary code on the device and/or perform a DoS on the GUI, via specifically crafted requests. The impact …

Blue Team, CVE-2023-25610, DoS, FG-IR-23-001, Fortinet, Infosec

Feb 06

Ransomware solution for VMware ESX

By Christopher GLEMOT in Cybersecurity, Detection & Response, Ransomware, Security, VMware, Vulnerability Management

Updated February 8, 2023. CISA has released a data recovery script dubbed “ESXiArgs-Recover” in order to help users who have been affected by the massive worldwide ESXiArgs ransomware server attacks on VMWare’s vSphere: GitHub. _________ Hacker group used a method that we encountered for the first time. A super-intelligence who thinks they can only get …

Blue Team, CVE-2022-31696, CVE-2022-31697, CVE-2022-31698, CVE-2022-31699, ESXiArgs, Infosec, Nevada, Ransomware, Vulnerability

Jan 06

Enterprise Cybersecurity challenges in 2023

By Christopher GLEMOT in Cyber Resiliency, Cybersecurity, Data Protection, Detection & Response, SOC, Vulnerability Management

In 2022, a lot of new variants of ransomware and groups (Ransomware as a Service) have targeted several major organizations and enterprises. New techniques (new features introduced by the notorious “LockBit” group, and a newcomer, “Play” that employs self-propagation techniques) and groups emerged as targeted ransomware attacks double in 2022. Today’s organizations, no matter their …

Challenges 2023, Cyber Resiliency, Cyber threats, Cybersecurity, Ransomware

Dec 12

Critical Fortigate VPN SSL Vulnerability – CVE-2022-42475

By Christopher GLEMOT in CERT, Cybersecurity, Fortinet, Security, Zero Day

Updated on Tuesday 13, December – Affected versions. Critical VPN SSL Vulnerability (FortiOS): Fortinet has just announced a critical vulnerability in all versions. Vulnerabilities that can be easily exploited remotely to compromise firewall or where remote code execution is considered likely in common situations. Manipulate the dynamic resources of some processes, the goal is to …

CVE-2022-42475, Fortinet, Infosec, Red Team, VPN SSL, Zero Day

Category: Cybersecurity

Critical FortiOS and FortiProxy Vulnerability – FG-IR-23-001

Ransomware solution for VMware ESX

Enterprise Cybersecurity challenges in 2023

Critical Fortigate VPN SSL Vulnerability – CVE-2022-42475

Follow me

Subscribe to Blog via Email

About me

Top Posts

Enjoy this blog? Please spread the word :)

Category: Cybersecurity

Critical FortiOS and FortiProxy Vulnerability – FG-IR-23-001

Share this:

Ransomware solution for VMware ESX

Share this:

Enterprise Cybersecurity challenges in 2023

Share this:

Critical Fortigate VPN SSL Vulnerability – CVE-2022-42475

Share this:

Hackers love it when you post pictures of your work environment

Share this:

Follow me

Subscribe to Blog via Email

About me

Top Posts

Enjoy this blog? Please spread the word :)