New Fortinet RCE bug is actively exploited, CISA confirms - Sergiu Gatlan
bleepingcomputer.com/news/security/…

bleepingcomputer.com/news/security/…

Fortinet: two new critical vulnerabilities published Feb 8, 2024. Be sure to check and patch your Fortinet systems:
CVE-2024-21762 CVSSv3 score: 9.6
CVE-2024-23113 CVSSv3 score: 9.8
fortiguard.com/psirt/FG-IR-24…
fortiguard.com/psirt/FG-IR-24…
#fortigate #fortinet

The January 2024 security updates are available:

🚨 Massive AI Security Release 🚨

National Institute of Standards and Technology just put out the best AI Security Publication that I've ever seen.

It is 106 pages of deep, technical content. It references real-world practical attacks. In this thread is the link and I'm going to cover a few highlights. 👇

Hva snakker vi egentlig om når vi snakker om digital sikkerhet og datasikkerhet?

Gjør deg klar til kamp! I veiviseren lærer du alt det viktigste du og din virksomhet må vite for å beskytte dere mot hackere og cyberkriminelle.

digitalnorway.com/kurs/sikkerhet/

ALPHV ransomware site outage rumored to be caused by law enforcement - Lawrence Abrams
bleepingcomputer.com/news/security/…

bleepingcomputer.com/news/security/…

Hvem eier denne emneknaggen?

Svaret er at det gjør du, jeg, de, vi, alle. Det vil si alle som på en eller annen måte bidrar til å sikre Norges digitale verdier.

Det betyr rett og slett at du bidrar og bryr deg 😊

For
#SammenSikrerViNorge

Over 20,000 vulnerable Microsoft Exchange servers exposed to attacks - Ionut Ilascu
bleepingcomputer.com/news/security/…

bleepingcomputer.com/news/security/…

TrickBot malware dev pleads guilty, faces 35 years in prison - Sergiu Gatlan
bleepingcomputer.com/news/security/…

bleepingcomputer.com/news/security/…

atea.no/media/2hxnhohs…

Ingen tvil om at beredskapen må bedres Thomas Tømmernes cw.no/atea-debatt-si…

youtube.com/watch?v=UjAVhp…

Stinn brakke og good stemning på Atea Norge #SecurityClub
Når Infinigate & Fortinet inviterer #InfoSec til workshop og gjennomgang av dagens trusselbilde, og hvilke teknologier fra Fortinet løser disse utfordringene.

#SammenSikrerViNorge

Microsoft will roll out MFA-enforcing policies for admin portal access - Sergiu Gatlan
bleepingcomputer.com/news/microsoft…

bleepingcomputer.com/news/microsoft…

Breaking news - Det europeiske personvernrådet EDPB har nå bestemt at det norske forbudet mot adferdsbasert markedsføring på Facebook og Instagram skal gjelde hele EU/EØS. datatilsynet.no/aktuelt/aktuel…

The financially motivated threat actor tracked by Microsoft as Octo Tempest, whose evolving campaigns leverage tradecraft not seen in typical threat models, represents a growing concern for organizations. Get TTPs and protection info: msft.it/60129Lhkw

Got this from threat intel feed (Justin Elze)

All I can say is its about time. I like compromising clouds as much as the next red teamer and we still have a long way to go. But this is going to help mitigate basic threat actor behavior by assurance of proper MFA coverage. #Cloud …

.Fox-IT have observed that the Cisco IOS XE implants have been updated/upgraded and created a new method to verify if a device is compromised.
github.com/fox-it/cisco-i…

I have updated the Atea Red Team verification Script as well now to include this. github.com/Atea-Redteam/C…

LIVE PODKAST 🚨 Hva skal egentlig til for å stå imot dagens trusselbilde? Thomas Tømmernes diskuterer med Åsmund Myklevoll, CISO i Sparebanken Sør, og
Vegard Kjerstad, leder for Atea IRT (Incident Response Team) #AteaCommunity #itsikkerhet

A simple pythonscript to check if a Cisco IOS XE has been hit by CVE-2023-20198: github.com/Atea-Redteam/C…… #cve202320198 #cisco