Recherche : [forescout]

New Ransomware Operator Exploits Fortinet Vulnerability Duo https://www.forescout.com/blog/new-ransomware-operator-exploits-fortinet-vulnerability-duo/

14/03/2025 17:19:23

Between late January and early March, Forescout Research – Vedere Labs identified a series of intrusions based on two Fortinet vulnerabilities. It began with the exploitation of Fortigate firewall appliances — culminating in the deployment of a newly discovered ransomware strain we have dubbed SuperBlack.

https://www.forescout.com/blog/draytek-routers-exploited-in-massive-ransomware-campaign-analysis-and-recommendations/ https://www.forescout.com/blog/draytek-routers-exploited-in-massive-ransomware-campaign-analysis-and-recommendations/

16/12/2024 09:24:00

Our 2024 Dray:Break report revealed 14 new vulnerabilities in DrayTek devices
*See our upcoming presentation at Black Hat Europe for more details
PRODAFT shared threat intelligence from 2023 on a ransomware campaign exploiting DrayTek devices
This is the first time this campaign is discussed publicly
Our analysis shows sophisticated attack workflows to deploy ransomware including possible:
- Zero-day vulnerabilities
- Credential harvesting and password cracking
  VPN and tunneling abuse

Liens par page

Filtres