FortiSIEM Discussions
FSM_FTNT
Staff
Staff

FortiSIEM Content Update 404

We have recently released content update 404 (6.7.0, 6.7.1 and 6.7.2). Content updates are available for the earlier release of FortiSIEM supporting Content Update.

 

https://help.fortinet.com/fsiem/6-7-0/Online-Help/HTML5_Help/content_updates.htm#Content

 

This content update contains the following:

 

  1. Rollup of Content Updates: 401-403. See Content Updates for 6.7.0 for more information.

  2. FortiGateParser update.

  3. 5 x Outbreak Rules and Reports:

    • Outbreak: VMware ESXi Server Ransomware Attack Detected on Network

    • Outbreak: Cacti Server Command Injection Attack Detected on Network

    • Outbreak: Cacti Server Command Injection Vulnerability Detected on Host

    • Outbreak: Fortra GoAnywhere MFT RCE Vulnerability Detected on Host

    • Outbreak: Fortra GoAnywhere MFT RCE Vulnerability Detected on Network

  4. All outbreak network rules updated to not trigger when source is public and is blocked by a firewall.

  5. Latest GeoDB Updates.

0 REPLIES 0