- 24 March 2025
- 24 March 2025
- 2 min read
Speak to an expert : Live Chat
Our commitment was put to the test back in February, following a critical advisory from Fortinet (detailed on their PSIRT page). This alert highlighted vulnerabilities that could potentially be exploited by malicious entities. The urgency of this advisory was underscored by a reported breach that month, where hackers offered admin access to compromised systems. A scenario vividly reported on Cybersecurity News
We responded swiftly to the Fortinet advisory. Recognising the severity of the situation, our team deployed several strategic measures to ensure our networks and those of our clients remained secure and impervious to the exploit:
Immediate Patch Implementation: Upon receiving the advisory, our team worked diligently to implement the necessary patches to the affected systems. By prioritising this update we were able to secure our networks quickly, before any malicious activities could impact our systems. All of our managed Fortigate systems were fully patched within 24 hours of the advisory being received from Fortinet.
Comprehensive System Audits: Concurrent with the patch implementation, our Networking team conducted thorough audits of our network infrastructure to identify any anomalies or signs of a breach. This proactive measure helped us confirm the integrity of our data and systems post-update.
Enhanced Monitoring Protocols: Understanding that new vulnerabilities can emerge at any time, we enhanced our monitoring protocols. This included increasing the frequency and depth of our surveillance to detect and respond to threats more effectively.
Customer Communication: We believe in transparency and the importance of keeping our customers informed. Preceding the update, we communicated this via our status page, explaining the situation, our response, and advising them on steps we are taking to ensure our security measures are effective.
The February incident was a stark reminder of the persistent threat landscape we navigate. It reinforced the importance of maintaining a vigilant, responsive, and proactive cybersecurity posture. Here are some key takeaways and steps we continue to uphold:
Regular Updates and Patching: We maintain a strict schedule for regular updates and patching of our systems, especially critical security infrastructures like the Fortigate Firewall.
Continuous Learning and Adaptation: Each security threat offers valuable lessons that we incorporate into our strategic planning. We continually adapt our security measures based on new information and emerging threats.
Partnerships and Collaboration: Working closely with technology partners like Fortinet allows us to stay ahead of potential security issues through real-time intelligence sharing and collaborative problem-solving.
Educating Our Customers and Community: We recommend any customers who wish to update their passwords use our recent guide on best practice and we continue to share our knowledge and learning to our customers through regular updates, empowering them to strengthen their defence against cyber threats.
At Exa, we are committed to providing our clients with the safest and most reliable network environments. The incident in February was a reminder of the challenges we face but also a testament to the effectiveness of our rapid response and the robustness of our security practices. As we move forward, we remain dedicated to enhancing our systems and educating our community, ensuring that security is not just a response but a continuous commitment.
For further information on our IMS Policy contact:
Exa is a trading name of Exa Networks Limited | Registered Company Number: 04922037 | VAT Number: 829 1565 09 | © Copyright Exa Networks Limited 2024 | All Rights Reserved
Exa is a trading name of Exa Networks Limited
Registered Company Number: 04922037
VAT Number: 829 1565 09
© Copyright Exa Networks Limited 2024 | All Rights Reserved
Cookie | Duration | Description |
---|---|---|
cookielawinfo-checkbox-analytics | 11 months | This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics". |
cookielawinfo-checkbox-functional | 11 months | The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional". |
cookielawinfo-checkbox-necessary | 11 months | This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary". |
cookielawinfo-checkbox-others | 11 months | This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other. |
cookielawinfo-checkbox-performance | 11 months | This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance". |
viewed_cookie_policy | 11 months | The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data. |
Monday: 8:30am – 5pm
Tuesday: 8:30am – 5pm
Wednesday: 8:30am – 5pm
Thursday: 8:30am – 5pm
Friday: 8:30am – 5pm
Saturday: Closed
Sunday: Closed
Email: helpdesk@exa.net.uk
Phone: 0345 145 1234
Monday: 8am – 6pm
Tuesday: 8am – 6pm
Wednesday: 8am – 6pm
Thursday: 8am – 6pm
Friday: 8am – 6pm
Saturday: 10am – 4pm
Sunday: 10am – 4pm