“Attackers are increasingly targeting critical external applications, and VPNs have been targeted even more this last year,” Zach Hanley, senior Red Team engineer at pentesting company Horizon3.AI Inc., told SiliconANGLE. But we continually strive to improve processes, including actively testing our code and fixing issues detected both internally and externally to deliver a more robust solution to our customers.” In response to the advisory, Fortinet said in an April 3 blog post that “no company is happy about security vulnerabilities, particularly a company like Fortinet operating in the security industry. “It is likely that the APT actors are scanning for these vulnerabilities to gain access to multiple government, commercial and technology services networks,” the advisory states.Īlong with immediately applying patches for the three vulnerabilities, the advisory also recommends that organizations should take practical measures, including regularly backing up data, implementing a recovery plan, using multifactor authentication where available, disabling unused remote access/Remote Desktop Protocol ports and monitor remote access/RDP logs. The APTs are said to be scanning devices on ports 4443, 843 for three vulnerabilities: CVE-2018-13379, a vulnerability that allows an unauthenticated attacker to download system files through SSL VPN CVE-2020-12812, also an improper authentication vulnerability in SSL VPN in FortiOS and CVE-2019-5591, a default configuration vulnerability that allows an attacker to intercept sensitive information by impersonating the LDAP server. While not naming which hacking groups that are targeting the operating system, the April 2 advisory describes them as advanced persistent threat groups, hacking groups that are typically sponsored by nation-states. Federal Bureau of Investigation and the Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency have released a joint cybersecurity advisory warning that hacking groups are actively targeting vulnerabilities in Fortinet Inc.’s FortiOS.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |