FBI: Unpatched Fortinet Flaws Remain Under Attack by APT Actors
Health IT Security
Advanced persistent threat (APT) actors are continuing to exploit three, unpatched, critical vulnerabilities in certain Fortinet FortiOS devices to gain access to victims’ networks for nefarious activities, including data theft and data encryption, according to a recent FBI alert.
The flash alert is a follow-up to an April Department of Homeland Security Cybersecurity and Infrastructure Security Agency and FBI alert, which shed light on the ongoing malicious campaign.
Fortinet released a software update for CVE-2018-13379 and FortiOS CVE-2020- 12812 and FortiOS CVE-2019-5591 in 2019. In previous attacks, hackers gained access to...