Fortinet Technical Tips
- von fricci_FTNTDescription This article describes how FortiGate blocks the TLS Encrypted Client Hello (ECH) and forces the end client to send the inner SNI in clear. When using the Encrypted […]
- von knoelFortiOS doesn't honor 'disable' option for 'config web-proxy explicit' command 'message-upon-server-error' in certain versions. Versions confirmed per bug ID 1042125 – 7.2.3, 7.2.8, 7.4.4.
- von npaivaDescription This article explains awareness for Low-End FortiGate Appliances administrators before performing firmware upgrades to FortiOS 7.4.4 and 7.6.0. Scope For Low-End units, with RAM
- von subramanisDescription This article describes the solution for the error 'auto-discovery-receiver is disabled, ignoring' that appears during an IKE debug with ADVPN setup. Scope FortiGate. Solution This error appears while troubleshooting […]
- von smayankDescription This article describes how to take the device GUI access on the IPV6 IP address. Scope FortiGate. Solution To take the GUI access to the IPV6 IP address, use […]
- von jeraDescription This article describes verifying the correct upgrade path for devices running on special builds. Scope FortiGate. Solution Some hardware models are released on a special branch/build. For example, the […]
- von sbabuDescription This article describes how to configure IPv6 with a stateful DHCPv6 server. Scope FortiGate. Solution Topology: Enable IPv6 in GUI: Go to System -> Feature Visibility -> […]
- von lvannstruthDescription This article describes how to manually reload external threat feeds for troubleshooting or test purposes. Scope FortiGate. Solution When working with external threat feeds, manually reloading the contents of […]
- von caunonDescription This article describes that SCTP packets can not pass through the FortiGate and can not see SCTP packets with proto 132 in packet sniffer from CLI commands. After investigating […]
- von AshishdeepDescription This article describes how to ban an IP address on the FortiGate by using an automation stitch for a failed IPsec connection. Scope FortiGate. Solution Create an automation stitch […]
Fortinet Firmware Updates
RSS-Fehler: WP HTTP Error: cURL error 60: SSL certificate problem: self signed certificate
Fortinet Thread Blog
- The FortiGuard Labs Threat Research team recently observed a number of social media posts commenting on a fraud campaign targeting India Post users. Learn more.
- According to new FortiGuard Labs analysis, this year’s Olympics has been a target for a growing number of cybercriminals. This report provides a comprehensive view of planned attacks, such as […]
- FortiGuard Labs uncovers MerkSpy, a new spyware exploiting CVE-2021-40444 to steal keystrokes and sensitive data. Learn more.
- Cybersecurity threats are increasingly leveraging cloud services to store, distribute, and establish command and control (C2) servers. Over the past month, FortiGuard Labs has been monitoring botnets that have adopted […]
- FortiGuard Labs has uncovered a fresh threat, Fickle stealer, which is distributed via various strategies. Read more.
- Shinra and Limpopo are recent ransomware designed to encrypt files in Windows and VMWare ESXi environments respectively, and they demand payment from victims to decrypt the files.
- A new phishing campaign was recently captured by our FortiGuard Labs that spreads a new Agent Tesla variant targeting Spanish-speaking people. Learn more.
- FortiGuard Labs has recently identified a sophisticated cyberattack involving an Excel file embedded with a VBA macro designed to deploy a DLL file. Learn more.
- FortiGuard Labs analysis of a zEus batch stealer distributed via a crafted Minecraft source pack. Learn more.
- In this report, we examine the cyberthreat landscape in 2H 2023 to identify trends and offer insights on what security professionals should know.
Cert Bund News
- Ein lokaler Angreifer kann eine Schwachstelle in less ausnutzen, um beliebigen Programmcode auszuführen.
- Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in cURL ausnutzen, um einen Denial of Service Angriff durchzuführen und vertrauliche Informationen offenzulegen.
- Ein entfernter, authentisierter Angreifer kann eine Schwachstelle in Progress Software Telerik Report Server ausnutzen, um beliebigen Programmcode auszuführen.
- Ein entfernter anonymer Angreifer kann mehrere Schwachstellen in Google Chrome / Microsoft Edge ausnutzen, um beliebigen Code auszuführen oder einen unspezifischen Angriff durchzuführen.
- Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Apache Traffic Server ausnutzen, um einen Denial of Service Angriff durchzuführen oder Sicherheitsmaßnahmen zu umgehen.
- Ein entfernter, authentisierter Angreifer kann eine Schwachstelle in IBM InfoSphere Information Server ausnutzen, um Daten zu manipulieren.
- Ein Angreifer kann mehrere Schwachstellen in Mattermost ausnutzen, um einen nicht näher spezifizierten Angriff durchzuführen.
- Ein lokaler Angreifer kann mehrere Schwachstellen in Canonical Snap ausnutzen, um Sicherheitsvorkehrungen zu umgehen, um Informationen offenzulegen und um einen Denial of Service Zustand herbeizuführen.
- Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Microsoft Edge ausnutzen, um Informationen offenzulegen und Code auszuführen.
- Ein entfernter, anonymer Angreifer kann eine Schwachstelle in PostgreSQL JDBC Driver ausnutzen, um eine SQL-Injection durchzuführen.
Microsoft Exchange Team Blog
- von The_Exchange_TeamWe are thrilled to announce the Public Preview of Inbound SMTP DANE with DNSSEC, a new capability of Exchange Online that enhances the security of email communications by supporting two […]
- von The_Exchange_TeamIn Part 1 of this series, we talked about cross-tenant (sometimes referred to tenant to tenant or T2T) mailbox migrations. In Part 2, we’ll cover how to troubleshoot issues you […]
- von The_Exchange_TeamWe wanted to tell you that an update was published related to the deprecation of Admin Audit Log cmdlets in Microsoft 365. The update was posted on the Security, Compliance, and […]
- von The_Exchange_TeamCross-tenant mailbox migrations are typically used in mergers and acquisitions ('Company A' buys or merges with 'Company B'), divestitures (part of 'Company A' becomes 'Company B'), and rebranding ('Company A' […]
- von The_Exchange_TeamEnhanced Filtering for Connectors (EFC) helps ensure that emails retain their original IP address and sender information when being routed through various services before being routed to Exchange Online by […]
- von Scott SchnollToday, we are providing an update on our product roadmap for Microsoft Exchange Server, and our next milestones in the Exchange Server journey to support the specific needs of our […]
- von The_Exchange_TeamMicrosoft has released Hotfix Updates (HUs) that enable support for new functionality and address issues in the March 2024 Security Update (SU). The April 2024 HU is available for the […]
- von The_Exchange_TeamToday, we are announcing that Exchange Online will permanently remove support for Basic authentication with Client Submission (SMTP AUTH) in September 2025. After this time, applications and devices will no […]
- von The_Exchange_TeamToday, we are announcing that, beginning in January 2025, Exchange Online will begin enforcing an external recipient rate limit of 2,000 recipients in 24 hours. Exchange Online does not support […]
- von The_Exchange_TeamWe wanted to make everyone aware of the blog post that went live on the Microsoft Dev blog, talking about new Nested App Authentication for Office Add-ins requirement that is […]
MSXFAQ Newsfeed
- 14. Jul 24 ADSync und RequireSenderAuthenticationEnabled – Einige Exchange Attribute sind in der Cloud änderbar – Mit unschönen Effekten
- 13. Jul 24 Das "richtige" Outlook – Was nun? das neue Outlook, classic Outlook, Outlook. Ende von Mail&News wohin geht die Reise?
- 12. Jul 24 Ressource Forest Konsolidierung – So können Sie einen OnPremises Ressource Forest mit Hybrid Mode bereinigen
- 11. Jul 24 PRTG Lizenzierung – Pro Sensor ist nicht pro Geräte oder Kanal und Neuerungen zum Juli 2024
- 08. Jul 24 Firmenwagen vs Exchange – Das KBA kann Fahrzeuge aus gutem Grund aus dem Verkehr ziehen. Wie sieht das mit ihrem Exchange Server aus?
- 07. Jul 24 Momentaufnahme KI – Nach 12 Monaten Copilot/KI und KI schaue mich mit etwas Abstand auf meine Umgebung
- 05. Jul 24 cloud.microsoft-Name – Immer mehr dienste nutzen diese Domain. Admins und Entwickler sollten ihren Code prüfen und Anwender informieren.
- 03. Jul 24 SMS Spam DHL – SMS aus Irland um Probleme einer DHL-Lieferung aufzulösen – Wer fällt darauf rein?
- 25. Jun 24 Aktuelle Events und Veranstaltungen – Präsentationen der ExpertsLive (Erfurt) und Infinity365 (Salzburg) als PDF bereitgestellt
- 25. Jun 24 KI/Copilot und Datenschutz – Datenschutz als Blocker für KI/Copilot-Projekte? – Sie fahren doch auch Auto, oder?