October 2024

Emerging Threat: FortiJump (CVE-2024-47575)

Oct 29, 2024 By Emma Zaballos In CyCognito

CVE-2024-47575, also known as FortiJump, is a critical (9.8) missing authentication vulnerability affecting critical functions in FortiManager and FortiManager Cloud versions. Threat researcher Kevin Beaumont published a blog post on October 22nd, 2024 identifying this vulnerability as a zero day. This vulnerability is separate from CVE-2024-23113, which also affects FortiGate devices.

Read Post

CyCognito

Read more about Emerging Threat: FortiJump (CVE-2024-47575)

What Security Teams Need to Know About the EU's NIS 2 Directive

Oct 24, 2024 By Graham Rance, VP Global Pre-Sales In CyCognito

The deadline to get compliant with the EU's NIS 2 Directive is here. And this isn't just a minor update from its NIS 1 predecessor-it's a major expansion that carries with it new challenges and obligations. The directive now covers a whopping 300,000 organizations, up from just 20,000 under NIS 1. Sectors like aerospace, public administration, digital services, postal and courier services, and food production are now included. Organizations are classified into "essential" or "important" entities based on size and criticality to the economy.

Read Post

CyCognito

Read more about What Security Teams Need to Know About the EU's NIS 2 Directive

CyCognito Announces Enhancements to its Automated Security Testing Product

Oct 17, 2024 By CyCognito In CyCognito

Support for AWS Organizations Simplifies Cloud Testing; New Workflows Make Pentester and Red Teams More Efficient.

Read Post

CyCognito

Read more about CyCognito Announces Enhancements to its Automated Security Testing Product

Emerging Security Issue: Multiple Palo Alto Networks Expedition PAN-OS Firewalls Vulnerabilities

Oct 16, 2024 By Emma Zaballos In CyCognito

On October 9th, 2024, five vulnerabilities were disclosed by Palo Alto Networks: These vulnerabilities affect Palo Alto Networks Expedition, a tool that manages configuration migration from supported vendors to Palo Alto Networks systems.

Read Post

CyCognito

Read more about Emerging Security Issue: Multiple Palo Alto Networks Expedition PAN-OS Firewalls Vulnerabilities

Emerging Security Issue: Multiple CUPS Vulnerabilities

Oct 16, 2024 By Emma Zaballos In CyCognito

On September 26, 2024, four critical vulnerabilities, CVE-2024-47076, CVE-2024-47175, CVE-2024-47176, and CVE-2024-47177, were disclosed in the open-source printing system Common Unix Printing System (CUPS) and its components. Attackers can leverage the remote code execution (RCE) and input validation vulnerabilities as part of an attack chain.

Read Post

CyCognito

Read more about Emerging Security Issue: Multiple CUPS Vulnerabilities

Emerging Security Issue: Fortinet FortiOS CVE-2024-23113

Oct 16, 2024 By Emma Zaballos In CyCognito

CVE-2024-23113 is a critical (9.8) Fortinet FortiOS vulnerability allowing remote, unauthenticated attackers to execute arbitrary code or commands using specially crafted requests. The flaw uses an externally-controlled format string vulnerability in the FortiOS fgfmd daemon.

Read Post

CyCognito

Read more about Emerging Security Issue: Fortinet FortiOS CVE-2024-23113

Six Signs that Exposure Management is Right for Your Organization

Oct 14, 2024 By Jason Pappalexis In CyCognito

Whether you’re the CISO or part of the incident response team, it’s likely you have heard of exposure management (EM). Introduced by Gartner in 2022 as the evolution of vulnerability management (VM), the name “exposure management” was adopted by vendors faster than you can say “next gen” or “AI-powered”. Unfortunately for consumers the hype added more confusion than clarity. This blog is a chance to reset expectations.

Read Post

CyCognito

Read more about Six Signs that Exposure Management is Right for Your Organization

Five Questions Your EASM Vendor Doesn't Want You to Ask

Oct 7, 2024 By Tim Matthews In CyCognito

With EASM now a critical piece of security operations, it seems like every vendor is jumping into the EASM pool. But not all EASM products are created equal. Companies in adjacent markets, like threat intelligence, are creating attack surface scanning products that are well short of enterprise grade. The shortcomings of these basic EASM products can waste time, erode confidence in security teams, and give an inaccurate picture of organizational risk.

Read Post

CyCognito

Read more about Five Questions Your EASM Vendor Doesn't Want You to Ask

Emerging Security Issue: HashiCorp Vault SSH CVE-2024-7594

Oct 1, 2024 By Emma Zaballos In CyCognito

CVE-2024-7594 is a severe unrestricted authentication issue affecting HashiCorp’s Vault’s SSH secrets engine. The National Institute of Standards and Technology (NIST) has not yet evaluated this vulnerability’s CVSS score but HashiCorp assigned it a base score of 7.5 (high). An outside security researcher, Jörn Heissler, discovered an issue with the valid_principals field in Vault’s SSH secrets engine.

Read Post

CyCognito

Read more about Emerging Security Issue: HashiCorp Vault SSH CVE-2024-7594

Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

October 2024

Emerging Threat: FortiJump (CVE-2024-47575)

What Security Teams Need to Know About the EU's NIS 2 Directive

CyCognito Announces Enhancements to its Automated Security Testing Product

Emerging Security Issue: Multiple Palo Alto Networks Expedition PAN-OS Firewalls Vulnerabilities

Emerging Security Issue: Multiple CUPS Vulnerabilities

Emerging Security Issue: Fortinet FortiOS CVE-2024-23113

Six Signs that Exposure Management is Right for Your Organization

Five Questions Your EASM Vendor Doesn't Want You to Ask

Emerging Security Issue: HashiCorp Vault SSH CVE-2024-7594

Monthly Archive

Follow Us