TTCSIRT – 440. 14.02.2025 – Cybersecurity Advisory: Fortinet FortiGate Authentication Bypass Zero-Day Vulnerability (CVE-2024-55591)
TT-CSIRT would like to bring to your attention a potential critical zero-day vulnerability impacting Fortinet FortiGate firewalls and FortiProxy devices. This vulnerability, tracked by Arctic Wolfas CVE-2024-55591, allows remote attackers…
Read MoreTTCSIRT – 439.21.11.2024 -WhatsApp Phishing Campaign Alert
TTCSIRT has been made aware of an ongoing WhatsApp phishing campaign targeting users. Attackers are impersonating known contacts to trick victims into compromising their accounts. Methods of Attack: Deceptive Message:…
Read MoreTT-CSIRT – 438.05.11.24. Security Update – Microsoft SharePoint Remote Code Execution Vulnerability
Please be advised of the following critical Microsoft SharePoint vulnerability, CVE-2024-38094, has been listed by our partners at the Cybersecurity & Infrastructure Security Agency (CISA) in their “Known Exploited Vulnerabilities…
Read MoreTT-CSIRT -437.25.10.24. Cisco Event Response: October 2024 Security Advisory Bundle for ASA, FMC, and FTD Software
On October 23, 2024, Cisco issued their semi-annual Security Advisory Bundle for ASA, FMC, and FTD software. This release contains 35 Cisco Security Advisories that describe 51 vulnerabilities impacting Cisco…
Read MoreTT-CSIRT – 436.24.10.24. Missing Authentication in FortiManager fgfmd
Fortinet has released a patch to address a critical vulnerability in their FortiManager product. This vulnerability allows threat actors to use a compromised FortiManager device to execute arbitrary code or…
Read MoreTTCSIRT – 435.26.09.24: Phishing Alert
The Trinidad and Tobago Cyber Security Incident Response Team (TT-CSIRT) is aware of a phishing email originating from a GovNeTT user’s compromised email “akesha.hazel@gov[.]tt’”. In this respect we are advising…
Read More