Sign in Subscribe

Cyber Alert

ALERT: Critical FortiManager Vulnerability

ALERT: Critical FortiManager Vulnerability

The ASD's ACSC is tracking a critical vulnerability in FortiManager devices, actively being exploited. With a CVSSv3 score of 9.8, Australian organizations must review their networks and apply the vendor’s patch immediately. Patch details are available at PSIRT | FortiGuard Labs.

CYBER ALERT: Iranian cyber actors’ brute force and credential access activity compromises critical infrastructure

Since October 2023, Iranian actors have used brute force, such as password spraying, and multi-factor authentication (MFA) ‘push bombing’ to compromise user accounts and obtain access to organizations. The actors frequently modified MFA registrations, enabling persistent access.