TTCSIRT-232.100719: TT-CSIRT ADVISORY – VPN SECURITY UPDATES

The United Kingdom (UK) National Cyber Security Centre (NCSC) has released an alert on advanced persistent threat (APT) actors exploiting vulnerabilities in Virtual Private Network (VPN) applications. Affected applications include those by Fortinet, Palo Alto and Pulse Secure.

TTCSIRT encourages users and administrators to read the NCSC alert for more information and see the following advisories from the respective companies and apply the recommended solutions:

NCSC Alert

• https://www.ncsc.gov.uk/news/alert-vpn-vulnerabilities

Fortinet

•  FG-IR-18-384 
• FG-IR-18-388
• FG-IR-18-389

Palo Alto

• PAN-SA-2019-0020

Pulse Secure

• SA44101