Fortinet Flaws Exploited by Qilin Ransomware


Fortinet was recently found to have certain vulnerabilities that hackers like the Qilin group exploited. Here’s how they manipulated these weaknesses:

  • Misconfigurations in security appliances provided a direct entry point for
  • Qilin.Outdated Software: Failure to update Fortinet software allowed the ransomware to exploit known vulnerabilities.

Qilin also employs social engineering tactics to gain unauthorized access:

  • Phishing Attacks: Targeting employees with sophisticated emails that mimic legitimate communications, prompting them to inadvertently grant access to malicious actors.

Read more…
Source: MSN News


Sign up for our Newsletter
The latest news and insights delivered right to your inbox.


Related:

  • Critical RCE Vulnerability Found in Cisco WebEx Extensions, Again — Patch Now!

    July 17, 2017

    A highly critical vulnerability has been discovered in the Cisco Systems’ WebEx browser extension for Chrome and Firefox, for the second time in this year, which could allow attackers to remotely execute malicious code on a victim’s computer. Cisco WebEx is a popular communication tool for online events, including meetings, webinars and video conferences that help ...

  • NSA Advocates Data Sharing Framework

    June 23, 2017

    The economics of cybersecurity are skewed in favor of attackers, who invest once and can launch thousands of attacks with a piece of malware or exploit kit. That’s why Neal Ziring, technical director for the NSA’s Capabilities Directorate, wants to flip the financial equation on bad guys. “We need to conduct defenses in a way that ...