Maritime Cybersecurity Threat Intelligence – January 2025 Highlights

Cydome’s maritime cybersecurity research team identified several new vulnerabilities in critical systems used by maritime companies that are important for IT managers to address:

  • A new vulnerability actively exploited in Fortinet’s routers, firewalls and VPNs allows attackers to bypass authentication and gain access to the internal network: CVE-2024-55591. A patch was recently released by Fortinet. This joins several other vulnerabilities recently found in Fortinet’s devices and OS, so we strongly advise updating Fortinet’s products and closely monitoring remote connections.
  • Over Two Dozen Flaws Identified in Advantech EKI industrial-grade wireless access point devices, some of which could be weaponized to bypass authentication and execute code with elevated privileges. A patch was released.
  • Ivanti continues to find more vulnerabilities in its remote access software, allowing attackers to gain remote access to the network. With hackers exploiting Ivanti vulnerabilities to compromise organizations such as the US CISA and the Norwegian government, we strongly recommend updating all Ivanti systems.
  • Sophos patched a critical vulnerability in its firewall product that could allow attackers to remotely execute code without authentication. Users are urged to update ASAP.

We urge you to patch such systems asap.

For more information, contact us to speak to one of our experts.

Maritime cybersecurity bulleting
You are invited to leave your details and book a session with our expert.
share the article
Skip to content