How to Prevent a Potential Fortinet FortiOS Breach: All You Need to Know
The system that for years has protected our digital business is now vulnerable to advanced persistent threat (APT) actors and soon may be a victim of potential attacks. The FBI and the Department of Homeland Security Cybersecurity and Infrastructure Security Agency (CISA), in a joint alert , have recently warned that threat actors are actively exploiting unpatched Fortinet vulnerabilities to gain network access.. Who should be concerned about the Fortinet vulnerabilities? According to FBI and CISA, APT actors are performing multiple device scans on ports 4443, 8443, and 10443 for unpatched security implementations in the Fortinet cybersecurity operating system called FortiOS. Owing to this information, almost all users of the Fortinet product are vulnerable to potential threats. However, three specific bugs, two out of which are critical for data exfiltration, have been identified to be actively exploited by attackers — CVE-2018–13379, CVE-2020–12812 and CVE-2019–5591. “It ...