Beware of cyber attacks with external connection services Update software

Regarding external connection services that are increasingly used for telecommuting, some of the services provided by American companies may be used by domestic local governments and medical institutions without updating the software, and may be subject to cyber attacks. The Cabinet Cyber ​​Security Center has issued a warning, if any.

As the work from home continues due to the corona, the use of an external connection service called VPN, which encrypts communication data and securely connects to a business system from outside the company, is spreading, but a part provided by Fortinet in the United States. We have found security vulnerabilities in our products that could allow a third party to read your ID and password.

The company is calling for software updates, but in many cases it has been left unattended, and last month, somebody posted information on devices left unattended around the world and about 50,000 terminals on bulletin boards on the Internet. it was done.

The Cabinet Cyber ​​Security Center has identified 218 businesses such as relevant local governments, medical institutions, financial institutions, and TV stations, and alerted the ministries and agencies in charge, saying that it could lead to serious cyber attacks.

According to an expert survey, data such as IDs and passwords that someone actually accessed and stole from these operators' terminals was also found on another site.

Tetsuji Yoshikawa, Counselor of the Cabinet Cyber ​​Security Center, said, "As the opportunities to use VPNs for working from home in Corona are increasing, risks that have been overlooked have become apparent. Please update the software and try to ensure safety." I will.