Alerts

New Advisory: (Critical) Authentication Bypass Vulnerability (FortiOS, FortiProxy, and FortiSwitch Manager)

ⓘ This advisory addresses a critical vulnerability impacting FortiOS, FortiProxy, and FortiSwitchManager platforms. Attention constituent:  CVE-2022-40684 is a critical authentication bypass vulnerability impacting Fortinet’s FortiOS, FortiProxy, and FortiSwitchManager platforms. This flaw enables attackers to gain unauthorised administrative access, potentially leading to system compromise, data theft, and operational disruption. A leaked list of 15,000 vulnerable IP […]

New Advisory: (Critical) Authentication Bypass Vulnerability (FortiOS, FortiProxy, and FortiSwitch Manager) Read More »

New Advisory: (Critical) FortiOS Vulnerability

ⓘ This advisory addresses a critical vulnerability impacting FortiOS systems (CVE-2024-55591). Attention constituent:  A critical vulnerability (CVE-2024-55591) has been identified in Fortinet’s FortiOS systems. This vulnerability stems from an authentication bypass flaw in the FortiOS web management interface. Exploitation of this vulnerability allows remote, unauthenticated attackers to gain unauthorised administrative access and execute arbitrary actions

New Advisory: (Critical) FortiOS Vulnerability Read More »

PRESS RELEASE: he Bahamas Strengthens Cybersecurity with National Cybersecurity Strategy Launch and Multi-day Workshop

NASSAU, The Bahamas—The country took a significant leap forward in safeguarding its digital infrastructure with the official launch of the National Cybersecurity Strategy (NCS) for The Bahamas. The Cabinet-approved strategy outlines the plan for The Bahamas to fortify its cybersecurity framework amid the rising global threat of cyber attacks. The launch of the NCS marked

PRESS RELEASE: he Bahamas Strengthens Cybersecurity with National Cybersecurity Strategy Launch and Multi-day Workshop Read More »

New Advisory: (Critical) FortiManager Zero-Day Exploitation

ⓘ This advisory addresses a zero-day vulnerability impacting FortiManager and FortiManagerCloud. Attention constituent:  A known, successfully exploited critical zero-day vulnerability (CVE-2024-47575) has been identified in Fortinet’s FortiManager and FortiManager Cloud platforms. This vulnerability stems from missing authentication in the FortiGate to FortiManager (FGFM) daemon (fgfmsd). Exploitation of this flaw allows remote, unauthenticated attackers to execute arbitrary code or commands via specially crafted

New Advisory: (Critical) FortiManager Zero-Day Exploitation Read More »

New Advisory: CrowdStrike Update Crashes Windows Systems Worldwide

ⓘ This advisory addresses a recent update to CrowdStrike’s Falcon sensor which has led to widespread Blue Screen of Death errors. Attention Microsoft service users:  A recent update to CrowdStrike’s Falcon sensor has led to widespread Blue Screen of Death (BSOD) errors on Windows hosts, resulting in disruptions locally to several services, including payment processing,

New Advisory: CrowdStrike Update Crashes Windows Systems Worldwide Read More »

Akira Ransomware Exploits Critical Vulnerabilities in ESXi VMware and VPNs

ⓘ This advisory addresses the increase of Akira Ransomware attacks on critical information infrastructure due to VPN vulnerabilities. Attention constituent:  CIRT-BS is observing an uptick in Akira Ransomware malware attacks impacting Bahamian critical infrastructure. Arika Ransomware, which emerged in March 2023, has two distinct variants that target outdated versions of VMware ESXi virtual machines, encrypting the files

Akira Ransomware Exploits Critical Vulnerabilities in ESXi VMware and VPNs Read More »

Consumer Loan Scams

Attention Constituent:  We would like to inform you about a series of consumer loan scams originating from actors posing as third-party representatives of financial institutions, including Central Bank of The Bahamas and Bank of The Bahamas Limited. Sources: https://www.centralbankbahamas.com/ and https://www.facebook.com/BOBBankofSolutions/ CIRT-BS reminds you that scammers often attempt to draw on your emotions by creating a sense

Consumer Loan Scams Read More »

Multiple Nation-State Threat Actors Exploit Multiple Zoho Manage Engine Products

Attention Constituent:     ######################################### ##  S E C U R I T Y   A D V I S O R Y  ## ######################################### Title            : Multiple Nation-State Threat Actors Exploit Multiple Zoho ManageEngine products Advisory ID      : CIRT-BS-2023-0004 Version          : 1.00 Probability  

Multiple Nation-State Threat Actors Exploit Multiple Zoho Manage Engine Products Read More »

Cisco Router / Adaptive Security Appliance (ASA) and FTD Software Vulnerability

Attention Constituent:     ######################################### ##  S E C U R I T Y   A D V I S O R Y  ## ######################################### Title            : Cisco Router / Adaptive Security Appliance (ASA) and FTD Software Vulnerability Advisory ID      : CIRT-BS-2023-0005 Version          : 1.00

Cisco Router / Adaptive Security Appliance (ASA) and FTD Software Vulnerability Read More »

Scroll to Top
Skip to content