Cybersecurity

5626 readers

90 users here now

c/cybersecurity is a community centered on the cybersecurity and information security profession. You can come here to discuss news, post something interesting, or just chat with others.

THE RULES

Instance Rules

Be respectful. Everyone should feel welcome here.
No bigotry - including racism, sexism, ableism, homophobia, transphobia, or xenophobia.
No Ads / Spamming.
No pornography.

Community Rules

Idk, keep it semi-professional?
Nothing illegal. We're all ethical here.
Rules will be added/redefined as necessary.

If you ask someone to hack your "friends" socials you're just going to get banned so don't do that.

Learn about hacking

Hack the Box

Try Hack Me

Pico Capture the flag

Other security-related communities !databreaches@lemmy.zip !netsec@lemmy.world !cybersecurity@lemmy.capebreton.social !securitynews@infosec.pub !netsec@links.hackliberty.org !cybersecurity@infosec.pub !pulse_of_truth@infosec.pub

Notable mention to !cybersecuritymemes@lemmy.world

founded 1 year ago

MODERATORS

kid@sh.itjust.works

Lanky_Pomegranate530@midwest.social

Fortinet confirms data breach after hacker claims to steal 440GB of files (www.bleepingcomputer.com)

submitted 1 month ago by kid@sh.itjust.works to c/cybersecurity@sh.itjust.works

7 comments fedilink hide all child comments

you are viewing a single comment's thread
view the rest of the comments

[–] biscuitswalrus@aussie.zone 5 points 1 month ago (1 children)

I deploy so many of these things. I don't even know what to say.

Fortinet as a security company is like asking a sieve to hold water.

The amount of cvss 10 scores show they've got the high score.

If they protect their own network with Fortigate devices no matter the utp atp whatever, they've probably been breached for a while.

Hard not to be cynical.

[–] sep@lemmy.world 1 points 1 month ago (1 children)

The article reads like it was sharepoint cloud service?

[–] biscuitswalrus@aussie.zone 1 points 1 month ago

Bleeping computer was blocking my vpn but that also sounds common. Not only is there heaps of controls through conditional access policies where you can use device compliance policies and mass download defender for office 365 rules to detect these things, Microsoft also allow a bunch of ways to circumvent that through publishing enterprise apps and leave it to you not to lose your keys. I use one such app a lot called pnp powershell so my powershell can access basically everything and do anything so I can script largely migrations and audits of those migrations into sharepoint. While I do remove that app at the end of my projects, most people just move on.

Of course pure speculation. It's just not even hard to either footgun yourself, and fortinet have been known to be shooting themselves in the foot, even assuming they tried to put controls in, in the first place.

I'll read the actual article when I get home to see how impacted I will be though. As a customer, seller and with certifications. Not to mention, maybe there's something for me to learn about the whole thing anyway.