Active exploitation of RDP vulnerabilities have been reported. The RDP vulnerabilities exploited by attacker are BlueKeep (CVE-2019-0708) and DejaBlue (CVE-2019-1222, CVE 2019-1226, CVE-2019-1181 and CVE-2019-1182), both of which patch are already released by Microsoft.
A new malware downloader dubbed “WhiteShadow” that abuses Microsoft SQL queries to drop malicious payloads on infected devices has emerged on the cyber threat landscape. White Shadow spreads via malspam attacks that send out emails attached with malicious Microsoft Word and Excel documents or containing a malicious URL.
If FortiGate Firewall configuration is not as per best practice, by using USB key to upgrade and restore firmware. During the console review it was found that USB Auto Installed is enabled by default.
A vulnerability in Network Time Protocol (NTP) package of Cisco IOS. Resolve an issue with (Network Time Protocol (NTP) Mode 6 Scanner).
Time synchronization for network devices is inherently important, not just for the various services that make use of time, but also for the accurate logging of events.
Clear-Text SNMP in Use. This article for where determined that the clear-text SNMP versions were enabled on Fortigate device.