Securitum’s Post

Palo Alto Networks firewalls under attack, hotfixes incoming! (CVE-2024-3400): Attackers are exploiting a command injection vulnerability (CVE-2024-3400) affecting Palo Alto Networks’ firewalls, the company has warned, and urged customers to implement temporary mitigations and get in touch to check whether their devices have been compromised. “Palo Alto Networks is aware of a limited number of attacks that leverage the exploitation of this vulnerability,” they said, and thanked Volexity researchers for flagging the issue. Exploitation of the vulnerability can be automated. About CVE-2024-3400 CVE-2024-3400 is … More → The post Palo Alto Networks firewalls under attack, hotfixes incoming! (CVE-2024-3400) appeared first on Help Net Security. @Poseidon-US #HelpNetSecurity #Cybersecurity

A highly critical security vulnerability has been identified in the Palo Alto Networks PAN-OS software, exposing a significant risk to affected systems. This vulnerability specifically involves a command injection flaw, which, if exploited, enables an attacker to execute arbitrary code with root-level privileges on the targeted firewall. The assigned Common Vulnerabilities and Exposures (CVE) identifier for this vulnerability is CVE-2024-3400. This particular vulnerability has been assessed with a maximum Common Vulnerability Scoring System (CVSS) score of 10.0, indicating its utmost severity. The CVSS score serves as a standardized measure for evaluating the potential impact and exploitability of security vulnerabilities, with a score of 10.0 denoting the most critical and dangerous https://lnkd.in/gv7khbGD

Important Security Update Alert for Icinga Director Users!   Icinga has released critical security updates for Icinga Director two weeks ago. These updates address potential vulnerabilities that could compromise the security of your system. It is highly recommended that you update your installations immediately to ensure the safety and integrity of their infrastructure. For more details, check out the blogpost that came with the release:  https://lnkd.in/dYJzrvta

🔥 Ignite Your Cyber Defenses with Sophos Firewall! 🔥  In today's digital landscape, where cyber risks are constantly evolving and becoming more sophisticated, having a strong security strategy is crucial. Here's why adopting Sophos Firewall can be a game-changing move for your organization's security: ��️ Multi-Layered Protection: Say goodbye to sleepless nights worrying about unauthorized access, malware, and intrusions. Sophos Firewall employs multiple layers of defense to keep your network safe from a wide array of threats. ⚙️ Unified Threat Management (UTM): Manage your security needs seamlessly with UTM capabilities. From firewall protection to intrusion prevention, content filtering, and more – Sophos Firewall has your back. 🌐 Web Filtering and Application Control: Maintain control over internet usage with web filtering and application control. Keep your team focused and productive while preventing access to malicious sites. 📊 User and Traffic Visibility: Gain insights into your network's traffic and user behavior. Understand usage patterns, detect anomalies, and respond swiftly to potential threats. #ITSupporters #Sophos #SophosFirewall  #SophosPromos #Cybersecurity  #StayProtected

🚨Urgent Cybersecurity Alert: Vulnerability in Fortinet FortiOS discovered. 🚨 What is the risk to your rail operations and what should you do about it? 🚆 Two new CVEs, CVE-2024-21762 and CVE-2024-23113, have been published, highlighting a VPN vulnerability in Fortinet FortiOS. 🔐 This vulnerability can allow unauthorized remote access to your systems, posing a significant risk to critical infrastructure like railway networks. These vulnerabilities can be exploited by attackers to execute unauthorized code or commands via specially crafted requests. If your network is connected to the IT or other unsecured networks via this vulnerable VPN or similar, it’s crucial to take immediate action. ❗❗ Here are some steps to consider: 1.⁠ ⁠Update your systems: Apply the necessary patches to your Fortinet FortiOS as soon as possible. 2.⁠ ⁠Audit your connections: Regularly review and monitor your network connections. 3.⁠ ⁠Enforce strict network rules: Limit what can be sent over the network to prevent potential attacks. #railcybersecurity #CVEs #cybersecurity #railindustry #vulnerabilitymanagement #rail

Read about the top routinely exploited vulnerabilities in 2022 and what your organization can do to protect networks and systems. With U.S. and international partners, we published a joint cybersecurity advisory to help organizations know about the common vulnerabilities and exposures (CVEs), and recommended actions to mitigate risk for vendors and developers and end-user organizations. https://go.dhs.gov/o4a For the first time, this advisory outlines the common weakness enumeration (CWEs) associated with these vulnerabilities, which reflects the underlying root causes that led to the exploited vulnerability. Recommended mitigations for vendor and developers include implementation of secure-by-design and default principles and ensure published CVEs include the proper CWE identifying the root cause of the vulnerability. Secure–by-design is a fundamental theme in this advisory. Vendors and developers are encouraged to take appropriate steps to provide products that protect their customers’ sensitive data by design and default. End-user organizations are provided recommended mitigations to improve their cybersecurity posture on the basis of the threat actors’ activity, to include timely patching of known exploited vulnerabilities, engagements with software providers to discuss their secure by design program, and use security tools, such as web application firewalls, network protocol analyzers, and endpoint detection and response (EDR). We encourage all organizations to review the advisory for resources and complete listing of recommended mitigations.

Palo Alto Networks firewalls under attack, hotfixes incoming! (CVE-2024-3400): Attackers are exploiting a command injection vulnerability (CVE-2024-3400) affecting Palo Alto Networks’ firewalls, the company has warned, and urged customers to implement temporary mitigations and get in touch to check whether their devices have been compromised. “Palo Alto Networks is aware of a limited number of attacks that leverage the exploitation of this vulnerability,” they said, and thanked Volexity researchers for flagging the issue. Exploitation of the vulnerability can be automated. About CVE-2024-3400 CVE-2024-3400 is … More → The post Palo Alto Networks firewalls under attack, hotfixes incoming! (CVE-2024-3400) appeared first on Help Net Security. #HelpNetSecurity #Cybersecurity

At Net Friends, we take cybersecurity seriously. There was a recent vulnerability (CVE-2024-3400) that affected Palo Alto Networks firewalls. The Good News: Most People Are Safe If you keep your software updated, you are likely in the clear! This vulnerability only impacted un-patched Palo Alto Networks firewalls running on older versions of the firmware. What Was This Vulnerability About? This vulnerability could have given hackers complete control of the firewall. Potentially allowing attacks on other parts of the system. Why Weren't There Emergency Updates? This vulnerability was a "Zero-Day," meaning there was no patch available. But the good news is, keeping your firewall software updated protects you from these types of threats. In this case, the vulnerability only impacted systems that were not updated. Staying Secure Online Keeping your software updated is one of the best ways to stay safe online. If you manage a Palo Alto firewall, make sure you update to the latest firmware. If you are not sure if you are protected, ask your IT provider. Net Friends: Your Security Partner At Net Friends, we are constantly on the lookout for new threats and take proactive steps to keep you safe. We believe everyone deserves to feel secure online. Have Questions? We're Here to Help! Want to learn more about online security? Feel free to reach out to us in the comments below or check out our website at https://hubs.ly/Q02tR4Rx0 #Cybersecurity #ITSupport #MSP #Durham #PaloAltoNetworks

Building security into systems from the ground up is more effective because it ensures that security is integrated into every aspect of the systesm's design and implementation, making it more robust and less vulnerable to attacks. Bolted-on security however, (often added as an afterthought), may not fully address these potential vulnerabilities... so ....When was the last time you evaluated your firewall security strategy? Go beyond with built-in Zero Trust Security to power distinct experiences with the least possible risk. Read the blog: https://hpe.to/6044jyBQG #HPEArubaNetworking

🚀 Critical Update Advisory for ScreenConnect Users In light of recent cybersecurity developments, it's crucial for businesses utilizing ScreenConnect (now rebranded as ConnectWise Control) to take immediate action to secure their systems against known vulnerabilities. Here's a quick guide on how to determine if you need the patch and the steps to apply it: Check Your Version: First, identify which version of ScreenConnect you're currently running. Versions before 23.9.8 are affected by these critical vulnerabilities. Contact Your IT Support: Unsure about your version or how to check it? This is where your IT support team comes in. They can quickly determine your current version and advise if a patch is necessary. Applying the Patch: ConnectWise has released updates addressing these vulnerabilities. You can typically initiate the update process from the ScreenConnect dashboard, under 'Updates' or 'Administration'. Follow the on-screen prompts to install the latest version. For those on a hosted solution, it's essential to confirm with your provider that these patches have been applied. Stay Informed: The digital landscape is always evolving, and so are its threats. Regular visits to the official ConnectWise or ScreenConnect website for the latest updates or security advisories are paramount in maintaining a secure system. By taking these proactive steps, businesses can significantly mitigate the risk posed by these vulnerabilities. Let's prioritize the security of our digital infrastructure and stay ahead of potential threats. If you have any further questions about it or any other security measures feel free to send me a message. #Cybersecurity #ScreenConnectUpdate #DigitalSecurity #TechUpdate