Patch management vulnerabilities are actively exploited across FortiGate firewalls, Ubiquiti UniFi OS, and SharePoint servers this week, with attackers stealing 110 million credentials and deploying ransomware against unpatched systems. Your immediate action: identify which systems run FortiGate, Ubiquiti, or SharePoint and apply patches before June 26th deadline.
Today's cybersecurity update covers critical threats facing small businesses. The FortiBleed attack has compromised over 430,000 FortiGate firewalls globally, stealing more than 110 million credentials since February by harvesting them directly from live network traffic. Organizations using FortiGate need immediate action.
LastPass experienced another security incident when hackers breached a third-party supplier, accessing customer contact information and physical addresses. This highlights the ongoing risks in the supply chain and emphasizes the need for multiple layers of security protection.
In positive news, Operation Endgame achieved significant success as Microsoft, Europol, and international partners disrupted the Amadey and StealC malware networks, taking down key cybercriminal infrastructure.
CISA issued urgent warnings about actively exploited vulnerabilities in Ubiquiti UniFi OS, with a patching deadline of June 26th. Additionally, threat actors are targeting unpatched SharePoint servers with ransomware and custom backdoors.
Key takeaways: Implement robust patch management, use strong unique passwords, maintain multiple security layers, and stay vigilant about supply chain risks.
Which patch management vulnerabilities threaten your small business most?
FortiBleed compromised 430,000 FortiGate firewalls globally by harvesting credentials directly from network traffic since February. CISA issued urgent warnings on Ubiquiti UniFi OS vulnerabilities with a June 26th patching deadline. Threat actors actively target unpatched SharePoint servers with ransomware and custom backdoors. If your business uses any of these platforms (common in manufacturing and professional services), unpatched systems create direct exposure to credential theft and ransomware downtime. The single most important action: audit which systems you run, check vendor advisories for patch status, and schedule deployments immediately. Delays measured in days translate to credential theft and operational shutdown.
Key takeaways
- FortiGate firewalls exposed to credential harvesting; patch or replace immediately if you cannot confirm your version.
- Ubiquiti UniFi and SharePoint patching deadlines approach (June 26th); verify you are on vendor support lists for alerts.
- LastPass breach through third-party supplier shows supply chain risk; review all vendor access to your networks and credentials.
- Credential theft from FortiBleed affects 110 million accounts; rotate passwords for critical systems and enforce multi-factor authentication.
Frequently asked questions
How do I know if my FortiGate firewall is affected by FortiBleed?
FortiBleed affects FortiGate firewalls running vulnerable firmware versions. Check your FortiGate model and firmware version in the admin console, then verify against Fortinet's security advisory. If your version matches the affected range, contact your IT provider or Fortinet support for patching instructions immediately.
What should I do if I use Ubiquiti UniFi?
Check your UniFi OS version against CISA's advisory released this week. If you run a vulnerable version, apply the patch before June 26th. Enable automatic updates if available, and verify the patch deployed successfully by checking the version number in your UniFi console.
Does the LastPass breach affect my business?
If your team uses LastPass, this breach exposed your contact information and physical address to attackers. Change your LastPass master password immediately, enable multi-factor authentication, and consider moving sensitive passwords (especially for financial and customer data systems) to a different password manager.
How often should my small business patch systems?
Critical patches (CISA-designated) should deploy within 7-14 days. High-priority patches within 30 days. Schedule a monthly patch window with your IT provider to test updates before deployment. Document which systems you patched and when to meet compliance audit requirements.
Sources
- https://cybersecuritynews.com/fortibleed-attack-fortigate-firewalls/
- https://www.pcmag.com/news/lastpass-breached-once-again-hackers-gain-access-to-sensitive-customer
- https://www.bleepingcomputer.com/news/security/amadey-stealc-malware-operations-disrupted-in-operation-endgame-action/
- https://www.bleepingcomputer.com/news/security/cisa-warns-of-max-severity-ubiquiti-flaws-exploited-in-attacks/
- https://cybersecuritynews.com/hackers-exploit-unpatched-sharepoint-servers/