Cisco recently released a collection of 10 security advisories against Cisco's Adaptive Security Appliance (ASA), Firepower Threat Defense (FTD), and Firepower Management Center (FMC) software. The collection includes a few high-risk vulnerabilities that affect File Transfer Protocol (FTP) Inspection, Session Initiated Protocol (SIP) inspection that could lead to a denial-of-service condition. Importantly, Cisco is not aware of any public exploitation of the vulnerabilities.
Systems Engineering is aware of the vulnerability affecting customers with Fortinet Firewalls who are using an SSL VPN (Secure Sockets Layers Virtual Private Network) to connect to their offices remotely. This vulnerability utilizes an improper limitation of a pathname to a restricted directory ("path traversal") in multiple Fortinet OS versions under the SSL VPN web portal.
Update as of 9:48 AM - Thursday, September 27
All Control Hub services have been restored.
Cisco Talos researchers announced this past week that Russian hackers were able to amass a collection of over 500,000 malware-infected consumer-grade routers. Dubbed the VPNFilter, this malware could have a significant impact on the operability of routers around the world by shutting down networks, blocking traffic, or collecting mass amounts of user information. There is also the potential to use all of the compromised devices in a single attack against a strategic target.
As of 12:36 PM EST, our SE CleanMail provider, Proofpoint, was experiencing intermittent email delays. As a result, SE CleanMail clients might have experienced a disruption in the receipt of emails from external senders.
Today at approximately 11:30am EST, users of Microsoft Office 365 began to experience delays and/or the nondelivery of external emails.
https://www.syseng.com/it-consulting-services/se-policyadvisor/Here at Systems Engineering (SE), we continue to see businesses impacted by ransomware; this creates a disruption to business and in some cases, a data breach.
Last week, a client of ours received the phishing email below requesting wire transfer account information. Fortunately for them, they did not fall for it. In the actual email, real names and real emails were used and the recipient, "Jane", was likely to have the information the scammer sought.
File sharing applications such as DropBox, ShareFile, Google Docs, and OneDrive are being utilized more frequently. Although these applications provide convenience, especially when sharing large files, they can create additional risks for your network.