FortiGuard
Fortinet’s Global Threat Intelligence and Research
mrobson
Staff
Staff
Article Id 243731
Description

 

The FortiGuard Incident Response team is ready to assist with the discovery, containment, and remediation of intrusions that have originated from the exploitation of a recent CentOS Web Panel vulnerability (CVE-2022-44877).

In most cases, exploitation of this vulnerability marks the first stage of an intrusion as it supports remote code execution (RCE).

A quick response that effectively contains an intrusion through this vulnerability before it can spread is key to minimizing business impact and greatly reducing the complexity of remediation efforts.

 

Scope

 

FortiGuard.

 

Solution
 
Engaging Response Services

 

To engage the IR team directly use the ‘Experienced a breach?’ link available here:

https://www.fortinet.com/solutions/enterprise-midsize-business/security-as-a-service/fortiguard-inci...

 

This webpage also has additional information on the IR services we provide and how to can help to mitigate the risk of vulnerabilities like these.

 

Engaging Proactive Services

 

If there is any question of whether this vulnerability is present in the systems or to proactively prepare the security teams to better handle threats associated with vulnerabilities like this, it is possible to engage the Incident Response Readiness service.

The FortiGuard IR Readiness service can assess the security posture and provide support to patch holes in the defenses, build playbooks to combat emerging threats, and war game your existing processes as part of tabletop activities.

 

More information on this service here:

https://www.fortinet.com/content/dam/fortinet/assets/solution-guides/sb-fortiguard-incident-readines...

Contributors