Tag “Fortinet”

🔍 Weekly Overview: Fortinet Vulnerability, Chrome Zero-Day, BadIIS Malware, Record DDoS Attack, SaaS Security Incident & More

Cybersecurity Weekly Update: New Vulnerabilities and Persistent Threats This week, the cybersecurity landscape revealed alarming developments as multiple organizations fell victim to sophisticated attacks, highlighting the evolving tactics employed by cybercriminals. Notably, Fortinet disclosed a serious vulnerability affecting its FortiWeb application firewall, categorized as CVE-2025-58034. This flaw, assigned a medium…

Read More🔍 Weekly Overview: Fortinet Vulnerability, Chrome Zero-Day, BadIIS Malware, Record DDoS Attack, SaaS Security Incident & More

Fortinet Alerts Users to New Authentication Bypass Vulnerability in FortiGate and FortiProxy

Security Alert: Critical Vulnerability Discovered in Fortinet Products Fortinet has issued a private alert regarding a serious security vulnerability affecting its FortiGate firewalls and FortiProxy web proxies. This issue has the potential to enable unauthorized actions on vulnerable devices, raising significant concerns for businesses relying on these solutions. The vulnerability,…

Read MoreFortinet Alerts Users to New Authentication Bypass Vulnerability in FortiGate and FortiProxy

Fortinet Alerts on Ongoing Exploitation of Critical Authentication Bypass Vulnerability

Fortinet Confirms Active Exploitation of Critical Vulnerability in Firewall and Proxy Products On Monday, Fortinet disclosed a critical security vulnerability affecting its firewall and proxy offerings, warning that the flaw is currently being exploited in the wild. This vulnerability, tracked as CVE-2022-40684 and rated with a CVSS score of 9.6,…

Read MoreFortinet Alerts on Ongoing Exploitation of Critical Authentication Bypass Vulnerability

Numerous Campaigns Target VMware Vulnerability to Distribute Crypto Miners and Ransomware

A recently patched vulnerability in VMware Workspace ONE Access has been leveraged to distribute both cryptocurrency mining malware and ransomware across affected systems. This information comes from Fortinet’s FortiGuard Labs, where researcher Cara Lin highlighted that the attackers aim to exploit victims’ resources extensively. The goal appears to involve not…

Read MoreNumerous Campaigns Target VMware Vulnerability to Distribute Crypto Miners and Ransomware

⚡ Weekly Roundup: Firewall Vulnerabilities, AI Data Breaches, Android Hacks, APT Incidents, Insider Leaks, and Beyond

The past week underscored a critical evolution in cyber threats, illustrating that attackers no longer require large-scale hacks to unleash significant damage. Instead, they are targeting essential tools that organizations rely on, including firewalls, browser extensions, and even smart devices. These seemingly minor vulnerabilities can become gateways to severe breaches.…

Read More⚡ Weekly Roundup: Firewall Vulnerabilities, AI Data Breaches, Android Hacks, APT Incidents, Insider Leaks, and Beyond

⚡ Weekly Highlights: Fortinet Vulnerabilities, RedLine Clipjack, NTLM Cracking, Copilot Attack & More

Emerging Cyber Threats: A Week in Review In the swiftly evolving landscape of cybersecurity, the distinctions between routine updates and significant breaches are increasingly blurred. Systems that once appeared secure are now subject to relentless challenges posed by new artificial intelligence tools, interconnected devices, and intricate automated systems. These innovations…

Read More⚡ Weekly Highlights: Fortinet Vulnerabilities, RedLine Clipjack, NTLM Cracking, Copilot Attack & More

AI-Powered Hacking Campaign Compromises Over 600 Fortinet Devices

Cybersecurity Update: AI-Powered Attack on Fortinet Firewalls and Other Breaches In a recent development in the cybersecurity landscape, a financially motivated threat actor, reportedly Russian-speaking, has leveraged commercial AI toolkits to compromise over 600 Fortinet firewalls. This operation was first identified by the AWS security team, indicating that the activity…

Read MoreAI-Powered Hacking Campaign Compromises Over 600 Fortinet Devices

Fortinet Issues Warning Over Active Exploitation of Recent SSL-VPN Pre-auth RCE Vulnerability

Fortinet Releases Critical Security Patches for SSL-VPN Vulnerability On Monday, Fortinet announced the release of emergency patches responding to a significant security vulnerability discovered in its FortiOS SSL-VPN product. This vulnerability is currently experiencing active exploitation in the wild, emphasizing the urgency for organizations to apply the updates promptly. The…

Read MoreFortinet Issues Warning Over Active Exploitation of Recent SSL-VPN Pre-auth RCE Vulnerability

Hackers Actively Targeting Zero-Day Vulnerability in Citrix ADC and Gateway

On Tuesday, the U.S. National Security Agency (NSA) issued a warning regarding a cyber threat from a group known as APT5, or Bronze Fleetwood, which has been actively exploiting a zero-day vulnerability in Citrix Application Delivery Controller (ADC) and Gateway systems. This security flaw, cataloged as CVE-2022-27518, represents a critical…

Read MoreHackers Actively Targeting Zero-Day Vulnerability in Citrix ADC and Gateway