Fortinet
20,000 Fortinet devices breached by Chinese hackers – reboots, firmware updates no defence
"It is important that organizations practice the ‘assume breach’ principle..." YARA rules, hashes etc. available for defenders.
Fortinet
Fortinet warns on critical SQL Injection bug after NCSC disclosure
More pre-auth RCE bugs in Fortinet appliances? Colour us shocked!
Fortinet
Fortinet patches MORE pre-auth RCEs, with exploits reported. Ivanti also slips out a fresh VPN fix...
"Disable SSL VPN (disable webmode is NOT a valid workaround..."
Fortinet
MFA is no protection against this critical new Fortinet vulnerability, CVE-2023-27997
"It is a pre-auth RCE [and] has been proven to be exploitable in a consistent manner; we found it during a Red Team engagement and have exploited it remotely..."
Cybersecurity
Fortinet exploits: Attackers tampered with firewall firmware
“System enters error-mode due to FIPS error: Firmware Integrity self-test failed” suggests compromises.
Cybersecurity
Critical pre-auth RCE Fortinet vulnerability is a breeze to exploit
A vulnerability in multiple Fortinet products gives an unauthenticated remote attackers root access to its core product’s administrative interface – and the vulnerability has been exploited in the wild the company warned. Given exploitation the company has warned customers to check for Indicators of Compromise. https://twitter.com/Horizon3Attack/status/
Read This
The 10 most-exploited vulnerabilities of 2021: Not patched? Likely pwned...
Attackers continue to accelerate their weaponisation of newly-discovered flaws, the Five Eyes list of most-exploited vulnerabilities of 2021 shows. Contrary to some reports suggesting fears of mass-exploitation had been over-indexed, the flaw in Log4j joined the most widely-exploited vulnerabilities last year, despite only being discovered at the year's
Cybersecurity
APT actors scanning for unpatched Fortinet vulnerabilities in ongoing attacks against high-value targets
Patch, patch, patch...