Fortinet - The Stack

20,000 Fortinet devices breached by Chinese hackers – reboots, firmware updates no defence

"It is important that organizations practice the ‘assume breach’ principle..." YARA rules, hashes etc. available for defenders.

Edward Targett June 11, 2024

Fortinet warns on critical SQL Injection bug after NCSC disclosure

vulnerabilities

News

Fortinet warns on critical SQL Injection bug after NCSC disclosure

More pre-auth RCE bugs in Fortinet appliances? Colour us shocked!

The Stack March 13, 2024

Fortinet patches MORE pre-auth RCEs, with exploits reported. Ivanti also slips out a fresh VPN fix...

Fortinet patches MORE pre-auth RCEs, with exploits reported. Ivanti also slips out a fresh VPN fix...

"Disable SSL VPN (disable webmode is NOT a valid workaround..."

Edward Targett February 09, 2024

MFA is no protection against this critical new Fortinet vulnerability, CVE-2023-27997

vulnerabilities

cybersecurity

News

MFA is no protection against this critical new Fortinet vulnerability, CVE-2023-27997

"It is a pre-auth RCE [and] has been proven to be exploitable in a consistent manner; we found it during a Red Team engagement and have exploited it remotely..."

Edward Targett June 12, 2023

Fortinet exploits: Attackers tampered with firewall firmware

Fortinet exploits: Attackers tampered with firewall firmware

“System enters error-mode due to FIPS error: Firmware Integrity self-test failed” suggests compromises.

The Stack March 14, 2023

Critical pre-auth RCE Fortinet vulnerability is a breeze to exploit

Cybersecurity

Featured

CVEs

Critical pre-auth RCE Fortinet vulnerability is a breeze to exploit

A vulnerability in multiple Fortinet products gives an unauthenticated remote attackers root access to its core product’s administrative interface – and the vulnerability has been exploited in the wild the company warned. Given exploitation the company has warned customers to check for Indicators of Compromise. https://twitter.com/Horizon3Attack/status/...

The Stack October 10, 2022

The 10 most-exploited vulnerabilities of 2021: Not patched? Likely pwned...

The 10 most-exploited vulnerabilities of 2021: Not patched? Likely pwned...

Attackers continue to accelerate their weaponisation of newly-discovered flaws, the Five Eyes list of most-exploited vulnerabilities of 2021 shows. Contrary to some reports suggesting fears of mass-exploitation had been over-indexed, the flaw in Log4j joined the most widely-exploited vulnerabilities last year, despite only being discovered at the year's...

Eliot Beer April 29, 2022

APT actors scanning for unpatched Fortinet vulnerabilities in ongoing attacks against high-value targets

Cybersecurity

APT

FBI

APT actors scanning for unpatched Fortinet vulnerabilities in ongoing attacks against high-value targets

Patch, patch, patch...

The Stack April 06, 2021

20,000 Fortinet devices breached by Chinese hackers – reboots, firmware updates no defence

Fortinet warns on critical SQL Injection bug after NCSC disclosure

Fortinet patches MORE pre-auth RCEs, with exploits reported. Ivanti also slips out a fresh VPN fix...

MFA is no protection against this critical new Fortinet vulnerability, CVE-2023-27997

Fortinet exploits: Attackers tampered with firewall firmware

Critical pre-auth RCE Fortinet vulnerability is a breeze to exploit

The 10 most-exploited vulnerabilities of 2021: Not patched? Likely pwned...

APT actors scanning for unpatched Fortinet vulnerabilities in ongoing attacks against high-value targets