Fortinet Fortigate Alert: FBI Warns of Threat to Unpatched Device

Trending News

Pregnant Workers Fairness Act Final Regulations Released

It’s the Final Countdown – The Final PWFA Regs Are Here

Corporate Transparency Act – Continued Developments

Healthcare Preview for the Week of: April 15, 2024 [Podcast]

SCOTUS Declines to Review New York City’s Rent Stabilization Law

Trending in Telehealth: April 2 – April 8, 2024

New CFIUS Rules to Enhance Enforcement and Investigation Activities

Chanel Seeks Permanent Injunction Against WGACA

EPA Finalizes National Primary Drinking Water Regulation for Certain PFAS

GeTtin' SALTy Episode 26 | Catch-up with Jared Walczak at the Tax Foundation, with a Focus on Property Tax Relief

Linn F. Freedman

Email

401-709-3353

Bio and Articles

FBI Issues Flash Alert to Users of Fortinet Fortigate

by: Linn F. Freedman of Robinson & Cole LLP - Data Privacy + Security Insider

Thursday, June 10, 2021

Print Mail Download

i

The FBI recently issued a Flash Alert to Fortinet Fortigate users that Advanced Persistent Threat (APT) groups are continuing to exploit devices that have not been patched. Although Fortinet issued patches for these vulnerabilities in 2018, 2019, and 2020, many organizations have not applied the patches.

The exploitations are random, not against specific industries or sectors, and seem to be focused on just targeting unpatched devices. According to a Joint CISA and FBI alert issued in April 2021, the vulnerabilities could be used by threat actors to exfiltrate data, encrypt data, and stage for additional attacks.

Not patching vulnerabilities in software that is actively being used by your organization is giving threat actors easy access to valuable data, akin to not locking your door and allowing a burglar to enter and steal all your valuables. These are not new vulnerabilities nor are they new patches. Check with your IT professionals to confirm that these patches have been applied.

Current Legal Analysis

USPTO Proposes New PTAB Practices in Latest Notice of Proposed Rulemaking

by: Alexander P. Wharton

United Nations Unanimously Adopts the First Resolution on Promoting Safe, Secure, and Trustworthy Artificial Intelligence

by: Seiko Okada, M.D., Ph.D. , Dr. Christian E. Mammen

Divided 9th Circuit Says District Court Has Power to Adjudicate TM Applications

by: Sofya Asatryan

Amendment to China’s Company Law (1): Contribution of Capital and Authorized Capital Concept

Supreme Court Rules Discriminatory Job Transfers Need Not Produce “Significant” Harm to be Actionable Under Title VII

by: Nigel F Telman , Evandro C Gigante

More from Robinson & Cole LLP

Privacy Tip #394 – Colorado Amends Privacy Law to Include Neurodata

by: Linn F. Freedman

New Threat: Scattered Spider International Coalition of Hackers

by: Linn F. Freedman

Joint Guidance Published by Five Eyes on Deploying AI Systems Securely

by: Linn F. Freedman

U.S. Government Intervenes in Case Alleging Unauthorized Disclosure of CUI

by: Data Privacy & Cybersecurity Robinson Cole

DoorDash Settles with California Attorney General for Alleged Violations of the CCPA

by: Kathryn M. Rattigan

The State of AI Governance and Diversity: Takeaways from the AI Index Report

by: Blair V. Robinson

Weight Loss, Miracle Medications & the Workplace

by: Abby M. Warren

Additional States Implement Notice Requirements for Healthcare Transactions

by: Leslie J. Levinson , Danielle H. Tangorre

Privacy Tip #393 – Phishing, Smishing, Vishing and Qrishing Schemes Continue to Dupe Users

by: Linn F. Freedman

Congress Introduces Promising Bipartisan Privacy Bill

by: Blair V. Robinson

Upcoming Legal Education Events

Jun

4

2024

FinTech and Securities Trading Platforms

May

15

2024

Capital Connect: Finance & Funding in Life Sciences

May

14

2024

Harmonizing TSCA Consent Orders with OSHA HCS 2012

May

7

2024

FinTech and Employment Law

Print