Fortinet WAF Vulnerabilities discovered

COMPANY: Fortinet HARDWARE DEVICE(s): Fortiweb Web Application Firewalls (WAF) VENDOR LINK(s): https://www.fortiguard.com/psirt/FG-IR-20-125 CVEs: CVE-2020-29015, CVE-2020-29016, CVE-2020-29019 and CVE-2020-29018 OFFICIAL CVSS: 6.4 — (Disputed by researcher: The CVE CVE-2020-29016 can allow code execution to be enabled, which means a CVSS of 9+ typically.) NOTES: The vulnerabilities were discovered in the FortiWeb administration interface. The researcher said […]

Healthcare seems to be taking it on the chin

In the last few months of 2020, it looks like Healthcare has been the primary industry to be taking the punches. Check Point software states the attacks worldwide have jumped 45% in the last months. The attackers are taking advantage of the pandemic and the stress it brings to keep healthcare continuing.

California Privacy Rights Act (CPRA)

Note that in 2023 the California Privacy Rights Act (CPRA) will go into effect on January 1 2023 as Proposition 24 was voted in. Its going to be awhile before it comes into play but be aware of that it will have impact globally. Dark Reading put some details together on it. – LINK