Category Archives: Security

Response to WannaCry Ransomware Attack

As you may know, on May 12, hackers launched a global ransomware campaign against tens of thousands of corporate and governmental targets. The ransomware encrypts files on an infected computer and asks the computer’s administrator to pay a ransom in order to regain access

The ransomware attack is apparently spreading through a Microsoft Windows exploit called “EternalBlue,” for which Microsoft released a patch in March. That month Fortinet released an initial IPS signature to detect vulnerabilities against MS17-10. This signature specifically looks for SMB type vulnerabilities. Earlier this week, Fortinet updated our IPS signature to further enhance detection. It appears this update detects the ransomware. Yesterday, we released an AV signature that detects and stops this attack. [Third-party testing has confirmed that Fortinet Anti-Virus and FortiSandbox are blocking the attacks.]

To learn more or if you have questions or concerns, please don’t hesitate to contact Digicorp, a premier partner of Fortinet and an asset to your business.  We will stand with our customers during these malicious attacks.  You can also find updates on the Fortinet Blog:

Critical Flaw in IE Found

IE_LogoA critical flaw in Internet Explorer (IE) has been found that has left all current IE users open to a remote attack.  IE versions 6 through 11 have been identified as being vulnerable to an attack that allows someone to remotely take control of a computer.  We are recommending that all IE users use a different browser until a fix is released via Windows updates.  See the press release from Microsoft here.

Continue reading Critical Flaw in IE Found

What You Need to Know About Heartbleed

heartbleedHeartbleed is a serious vulnerability in the OpenSSL library.  OpenSSL is considered to be the standard in implementing TLS and SSL cryptography,  and is used by the majority of servers and internet devices.

By now nearly every major player on the internet has updated their software or has provided a fix for the devices they support.  Some of our partners such as Fortinet, Barracuda, and VMware for example all have updates that need to be installed for some of their products.

If you have concerns about the Heartbleed vulnerability contact us and we will work with you to determine if anything on your network is vulnerable and we can assist you in resolving the issue.  Contact us by email or give us a call at: (262) 402-6105 (ask for Carol).