On Tuesday, the U.S. National Security Agency (NSA) issued a warning regarding a cyber threat from a group known as APT5, or Bronze Fleetwood, which has been actively exploiting a zero-day vulnerability in Citrix Application Delivery Controller (ADC) and Gateway systems. This security flaw, cataloged as CVE-2022-27518, represents a critical…
Fortinet has identified a critical vulnerability impacting its FortiADC application delivery controller that has the potential for arbitrary code execution. This flaw, categorized as CVE-2022-39947 with a CVSS score of 8.6, affects several FortiADC versions, including 7.0.0 to 7.0.2, 6.2.0 to 6.2.3, and several earlier versions down to 5.4.0. According…
Exploitation of FortiOS SSL-VPN Zero-Day Vulnerability Targets Government Entities A critical zero-day vulnerability in FortiOS SSL-VPN was exploited by unknown threat actors in recent attacks, targeting governmental and other large organizations, as reported by Fortinet. This vulnerability, identified as CVE-2022-42475, is a heap-based buffer overflow flaw that permits unauthenticated remote…
Recent cybersecurity intelligence has revealed a sophisticated exploitation of a patched vulnerability in Fortinet’s FortiOS SSL-VPN. This zero-day exploit is believed to have been leveraged by a suspected state-sponsored threat actor associated with China, targeting a government entity in Europe and a managed service provider (MSP) in Africa. Evidence gathered…
New Cryptographic Vulnerability: DUHK A recent cryptographic vulnerability known as DUHK, which stands for “Don’t Use Hard-coded Keys,” has emerged as a significant concern for VPN and web browsing security. This non-trivial flaw could enable attackers to extract encryption keys, potentially compromising sensitive data. The DUHK vulnerability follows closely on…
Fortinet Issues Critical Security Patches Addressing Major Vulnerabilities Fortinet has announced the release of patches to rectify 15 significant security vulnerabilities, including one labeled as critical, affecting both FortiOS and FortiProxy. This particular vulnerability, identified as CVE-2023-25610, has been rated with a severity score of 9.3 out of 10, indicating…
A new cyber incident has emerged involving an unknown threat actor exploiting a vulnerability in Fortinet’s FortiOS software. The attack has resulted in significant data loss and corruption of operating systems and files, primarily targeting government entities and large organizations. Fortinet researchers Guillaume Lovet and Alex Kong, in an advisory…
In its March 2023 Patch Tuesday update, Microsoft disclosed fixes for 80 security vulnerabilities, two of which have been actively exploited in the wild. These vulnerabilities target critical components within the Microsoft ecosystem, with eight categorized as Critical, 71 as Important, and one as Moderate in severity. This update continues…
Severe Microsoft Office Vulnerability Exploited to Deliver Cobalt Malware Recently uncovered, a critical 17-year-old vulnerability in Microsoft Office is being actively exploited by threat actors to deploy backdoor malware. This vulnerability, designated as CVE-2017-11882, allows hackers to install malicious software on targeted systems without requiring any user interaction, raising significant…
