LINK While I cant personally vet the article other than it looks valid. The point here is this. This Free VPN company called ActMobile, WAS logging your data and its data was exfiltrated releasing identifiable information. Pay a few bucks a month for one…Just do not use one for free.
LINK Its time again, if you have a Pulse Secure VPN appliance, goto Pulse secure for fixing the new Buffer Overflow allowing an attacker to run a remove command.
SOFTWARE/COMPANY:Fortinet SOFTWARE LINK(s):https://www.fortiguard.com/psirt/FG-IR-20-229ehttps://www.fortiguard.com/psirt/FG-IR-20-232https://www.fortiguard.com/psirt/FG-IR-20-125https://www.fortiguard.com/psirt/FG-IR-20-177https://www.fortiguard.com/psirt/FG-IR-20-123https://www.fortiguard.com/psirt/FG-IR-20-126https://www.fortiguard.com/psirt/FG-IR-20-124 NEWS LINK(s):https://www.bleepingcomputer.com/news/security/fortinet-fixes-critical-vulnerabilities-in-ssl-vpn-and-web-firewall/ CVEs:CVE-2018-13383 – DoS, RCE – FortiProxy SSL VPNCVE-2018-13381 – DoS – FortiProxy SSL VPNCVE-2020-29015 – SQL Injection – FortiWebCVE-2020-29016 – RCE – FortiWeb 6.3.5CVE-2020-29017 – RCE – FortiDeceptorCVE-2020-29018 – RCE – FortiWebCVE-2020-29019 – DoS – FortiWeb NOTES:Two of these vulnerabilitiesw had dates for their publishing back to 2019, the rest […]