CyberSecurity news

FlagThis

Stefan Hostetler, Julian Tuin, Trevor Daher, Jon Grimm, Alyssa Newbury, Joe Wedderspoon, and Markus @Arctic Wolf //

Fortinet Firewall Zero-Day Exploitation

Original img attribution: https://arcticwolf.com/wp-content/uploads/2024/12/Arctic-Wolf-Labs_aurora.jpg
ImgSrc: arcticwolf.com

Share: bluesky twitterx--v2 facebook--v1 threads


References :
  • Arctic Wolf: Console Chaos: A Campaign Targeting Publicly Exposed Management Interfaces on Fortinet FortiGate Firewalls
  • : Arctic Wolf observed a recent campaign affecting Fortinet FortiGate firewall devices with management interfaces exposed on the public internet.
  • arcticwolf.com: Console Chaos: A Campaign Targeting Publicly Exposed Management Interfaces on Fortinet FortiGate Firewalls
  • ciso2ciso.com: Miscreants ‘mass exploited’ Fortinet firewalls, ‘highly probable’ zero-day used – Source: go.theregister.com
  • The Hacker News: Zero-Day Vulnerability Suspected in Attacks on Fortinet Firewalls with Exposed Interfaces
  • ciso2ciso.com: Miscreants ‘mass exploited’ Fortinet firewalls, ‘highly probable’ zero-day used – Source: go.theregister.com
  • www.helpnetsecurity.com: Fortinet firewall zero-day exploited by attackers since November, patch is finally out
  • cyble.com: Fortinet patches authentication bypass zero-day
  • Pyrzout :vm:: Fortinet’s Authentication Bypass Zero-Day: Mitigation Strategies and IoCs for Enhanced Security
  • ciso2ciso.com: A new campaign is likely targeting a zero-day in Fortinet FortiGate firewalls – Source: securityaffairs.com
  • fortiguard.fortinet.com: PSIRT | FortiGuard Labs - CVE-2024-55591 Exploited in the wild - Report Provides IoC
  • BleepingComputer: Hackers leak configs and VPN credentials for 15,000 FortiGate devices
  • www.bleepingcomputer.com: Hackers leak configs and VPN credentials for 15,000 FortiGate devices
Classification: