Content Paint
Search
Sign in

Fortinet

Fortinet  | Jun 11, 2024
20,000 Fortinet devices breached by Chinese hackers – reboots, firmware updates no defence
20,000 Fortinet devices breached by Chinese hackers – reboots, firmware updates no defence

"It is important that organizations practice the ‘assume breach’ principle..." YARA rules, hashes etc. available for defenders.

Fortinet  | Mar 13, 2024
Fortinet warns on critical SQL Injection bug after NCSC disclosure
Fortinet warns on critical SQL Injection bug after NCSC disclosure

More pre-auth RCE bugs in Fortinet appliances? Colour us shocked!

Fortinet  | Feb 09, 2024
Fortinet patches MORE pre-auth RCEs, with exploits reported. Ivanti also slips out a fresh VPN fix...
Fortinet patches MORE pre-auth RCEs, with exploits reported. Ivanti also slips out a fresh VPN fix...

"Disable SSL VPN (disable webmode is NOT a valid workaround..."

Fortinet  | Jun 12, 2023
MFA is no protection against this critical new Fortinet vulnerability, CVE-2023-27997
MFA is no protection against this critical new Fortinet vulnerability, CVE-2023-27997

"It is a pre-auth RCE [and] has been proven to be exploitable in a consistent manner; we found it during a Red Team engagement and have exploited it remotely..."

Cybersecurity  | Mar 14, 2023
Fortinet exploits: Attackers tampered with firewall firmware
Fortinet exploits: Attackers tampered with firewall firmware

“System enters error-mode due to FIPS error: Firmware Integrity self-test failed” suggests compromises.

Cybersecurity  | Oct 10, 2022
Critical pre-auth RCE Fortinet vulnerability is a breeze to exploit
Critical pre-auth RCE Fortinet vulnerability is a breeze to exploit

A vulnerability in multiple Fortinet products gives an unauthenticated remote attackers root access to its core product’s administrative interface – and the vulnerability has been exploited in the wild the company warned. Given exploitation the company has warned customers to check for Indicators of Compromise. https://twitter.com/Horizon3Attack/status/

Read This  | Apr 29, 2022
The 10 most-exploited vulnerabilities of 2021: Not patched? Likely pwned...
The 10 most-exploited vulnerabilities of 2021: Not patched? Likely pwned...

Attackers continue to accelerate their weaponisation of newly-discovered flaws, the Five Eyes list of most-exploited vulnerabilities of 2021 shows. Contrary to some reports suggesting fears of mass-exploitation had been over-indexed, the flaw in Log4j joined the most widely-exploited vulnerabilities last year, despite only being discovered at the year's

Cybersecurity  | Apr 06, 2021
APT actors scanning for unpatched Fortinet vulnerabilities in ongoing attacks against high-value targets
APT actors scanning for unpatched Fortinet vulnerabilities in ongoing attacks against high-value targets

Patch, patch, patch...

Your link has expired. Please request a new one.
Your link has expired. Please request a new one.
Your link has expired. Please request a new one.
Great! You've successfully signed up.
Great! You've successfully signed up.
Welcome back! You've successfully signed in.
Success! You now have access to additional content.