IKT Asset
AIFortinetCISACybersecurityAPT28Vulnerability

Cybersecurity: Warnings of Russian Military Intelligence and Vulnerabilities in Fortinet Devices

The UK government warns of cyber attacks by Russian military intelligence, while CISA recommends measures to secure Fortinet devices.

Introduction

In recent weeks, several critical security warnings have been issued highlighting the increasing threats from cyber attacks. In particular, the UK government has warned about the exploitation of vulnerabilities by Russian military intelligence, while the Cybersecurity and Infrastructure Security Agency (CISA) recommends urgent measures to secure Fortinet devices.

Russian Military and Cyber Attacks

According to a recent statement from NCSC UK, the cyber threat group APT28, also known as Fancy Bear, has exploited vulnerable routers to carry out cyber attacks. These attacks aim to disrupt critical infrastructures and steal information. UK authorities have urged businesses and organizations to review their network security practices and ensure their devices are adequately secured.

Vulnerabilities in Fortinet Devices

In parallel, CISA has warned users of Fortinet devices after reports surfaced regarding the exposure of login credentials. The vulnerability, known as FortiBleed, affects approximately 74,000 devices worldwide, including firewalls and VPN gateways. CISA has recommended several measures, including:

  • Immediate termination of active sessions and resetting of credentials.
  • Reviewing logs for suspicious activities.
  • Enabling multi-factor authentication (MFA).

AzeoTech DAQFactory Vulnerability

Additionally, a critical vulnerability has been discovered in AzeoTech DAQFactory software, allowing attackers to upload malicious files and potentially execute arbitrary code. The affected versions are up to and including 21.1. Users are urged to take precautions to minimize the risk of exploitation.

Conclusion

These recent developments underscore the need for robust cybersecurity measures in businesses and organizations. Implementing the recommended security practices can significantly help reduce the risks of cyber attacks.