Risky Bulletin: Improperly patched bug exploited again in Fortinet firewalls
Summary
The Risky Business News article highlights the re-exploitation of an improperly patched bug in Fortinet firewalls. It also mentions hackers targeting security testing environments, Jordan using Cellebrite against activists, and new zero-day vulnerabilities in Cisco and SmarterMail products.
IFF Assessment
The article details multiple security vulnerabilities and exploits, posing increased risk and workload for security defenders.
Severity
Defender Context
Defenders should prioritize patching Fortinet firewalls and investigate potential compromises. The targeting of security testing environments highlights the need for strong security measures in those environments as well. Zero-day vulnerabilities in Cisco and SmarterMail require immediate attention and monitoring for exploit attempts.