Fortinet

Credit to Author: Katrina Fox| Date: Mon, 27 Mar 2017 15:24:26 -0700

The Australian Signals Directorate’s (ASD) ‘Essential 8’ strategies to mitigate cyber security incidents represent a set of cyber security best practices that, when implemented successfully, will provide your agency with a baseline cyber security posture. The Essential 8 expand upon the ‘Top 4’ mitigation strategies, part of the government’s Protective Security Policy Framework, which have been mandatory for federal agencies since 2014. ASD has stated that implementing the Top 4 mitigation strategies will…

Credit to Author: John Welton| Date: Mon, 27 Mar 2017 07:11:12 -0700

We recently talked with Ladi Adefala to get a better understanding of how the dark, mysterious underground of cyber crime is helping to fuel this growth, and how it impacts businesses and individuals.

Credit to Author: Axelle Apvrille| Date: Fri, 24 Mar 2017 07:30:22 -0700

A monthly review of some of the previous month's most interesting security research publications

Credit to Author: Gavin Chow| Date: Fri, 24 Mar 2017 07:21:45 -0700

Digital Video Recorders / Network Video Recorders (DVR/NVR) Back in 2015, our telemetry detected a relatively small number of IPS signature hits on known vulnerabilities targeting DVR/NVR devices (~ 749 hits). In 2016, however, we saw this number increase alarmingly to around 1.5 million hits. By using a size comparison chart again, we can see the huge increase more clearly when we compare both years, as shown below: The question, of course, is what contributed to this huge increase in detected hits? Once again, let’s look at the…

Credit to Author: Honggang Ren| Date: Thu, 23 Mar 2017 07:36:12 -0700

All users of vulnerable versions of the Microsoft Windows Server are encouraged to upgrade to the latest version of this software. Additionally, organizations that have deployed Fortinet IPS solutions are already protected from this vulnerability.

Credit to Author: Xiaopeng Zhang & Chris Navarrete| Date: Wed, 22 Mar 2017 10:43:43 -0700

On March 16, FortiGuard Labs captured a new Word file that spreads malware by executing malicious VBA (Visual Basic for Applications) code. The sample targeted both Apple Mac OS X and Microsoft Windows systems. We then analyzed the sample, and in this blog we are going to explain how it works, step by step. When the Word file is opened, it shows notifies victims to enable the Macro security option, which allows the malicious VBA code to be executed. Malicious Word File is Opened Figure 1. Asks victim to enable Macro security option Once…

Credit to Author: Darlene Gannon| Date: Wed, 22 Mar 2017 08:25:06 -0700

Fortinet spoke with Fabric-Ready Partner, Versa Networks to learn what’s top of mind for its customers, the key IT challenges they are facing and how Versa Networks’ approach to integrated security is helping drive business and customer success.

Credit to Author: Tony Loi| Date: Tue, 21 Mar 2017 09:31:57 -0700

Over the last few months we discovered and reported multiple vulnerabilities found in different versions of Microsoft Word. These vulnerabilities were patched in the January (MS17-002) and March (MS17-014) security updates. These patches are rated as important, and as always, we suggest users update Microsoft Office as soon as possible.