Here's how Chinese cyber spies exploited a critical Fortinet bug
A few days later, the vendor released a more detailed. It indicated that miscreants were using the flaw in an attempt to attack large organizations, steal their data, and cause OS or file corruption:"The complexity of the exploit suggests an advanced actor and that it is highly targeted at governmental or government-related targets."published today, Mandiant pinned the blame on Chinese hackers – with the FortiOS zero day, and"multiple" bespoke malware families.
"Mandiant suspected the FortiGate and FortiManager devices were compromised due to the connections to VIRTUALPITA from the Fortinet management IP addresses," the researchers observed. The first one, which occurred when the threat actor initially gained access to the Fortinet ecosystem while the FortiManager device was exposed to the internet, uses the CASTLETAP backdoor plus another novel malware named THINCRUST.
The spies exploited the path traversal vulnerability by using the command"execute wireless-controller hs20-icon upload-icon." Normally, this command is used to upload icon files from a server to a FortiGate firewall, where they can be used in HotSpot 2.0 Online Sign-Up portals . Unfortunately the command had two serious issues, as Mandiant researchers explained:
Belgique Dernières Nouvelles, Belgique Actualités
Similar News:Vous pouvez également lire des articles d'actualité similaires à celui-ci que nous avons collectés auprès d'autres sources d'information.
Strictly Pair Allude To Romance Rumours With Cheeky Friends ReferenceIt looks like another couple have found love after appearing on the BBC ballroom show.
Lire la suite »
M&S shoppers say 'flattering' £22 jumper dress 'looks good with everything'Happy customers have taken to the review section of the Marks and Spencer website to rave about the cosy and stylist piece, with many branding it perfect for both casual and dressier occasions.
Lire la suite »
Towie's Chloe Lewis looks incredible in see-through lace corsetTOWIE’S Chloe Lewis looked sensational as she modelled a sexy see-though lace corset. The reality TV star, 32 – who also works as a model and cosmetics company founder – perched o…
Lire la suite »
Chinese Refinery Throughput Climbs As Fuel Demand Rebounds | OilPrice.comAnother sign of Chinese oil demand recovery. Refinery throughput climbed in January and February, both year-over-year and compared to December.
Lire la suite »
Turns Out Coffee Has A Health Benefit We've Only Just DiscoveredLooks like we have an excuse to drink even more of the good stuff.
Lire la suite »
Holly Willoughby looks gorgeous in angelic all-white outfitHolly Willoughby wore a white cashmere jumper and matching white Osti midi skirt from Reiss to host This Morning on Wednesday. Shop the look online.
Lire la suite »