Fortinet warns a critical vulnerability in its systems could let attackers breach company networks

Fortinet releases advisory urging users to apply available patch
Security researchers warn the bug is being exploited en-masse
CISA added the flaw to its KEV catalog

A zero-day vulnerability in firewalls built by Fortinet is being exploited en-masse to breach corporate networks and possibly deploy ransomware, the company has confirmed, with the findings backed up by a number of cybersecurity researchers.

The company recently published a security advisory, detailing a critical-severity vulnerability in the FortiGate firewalls. Tracked as CVE-2024-55591, this authentication bypass was given a severity score of 9.8, and said it affects FortiOS version 7.0.0 through 7.0.16 and FortiProxy versions 7.0.0 through 7.0.19, and 7.2.0 through 7.2.12.

Malicious actors can abuse the bug to gain super-admin privileges, it was said.

Massive exploitation

In the advisory, Fortinet said the bug was “being exploited in the wild”, and used the opportunity to release a patch.

However, cybersecurity researcher from Arctic Wolf said the bug was already being massively exploited while it was a zero-day (before the patch).

Speaking to TechCrunch, ArcticWolf’s lead threat intelligence researcher Stefan Hostetler said that the company saw a cluster of intrusions that affected Fortinet devices “in the tens”, but added that it likely “only represents a limited sample compared to the total actual number” of affected endpoints. Unfortunately, no one was able to confirm even an estimated number of victims.

The researchers also could not attribute the attack to any particular threat actor. However, researcher Kevin Beaumont suggested that at least one of the threat actors is a ransomware operator. “They have a copy of an exploit and are using it for initial access and handing off for lateral movement,” he commented.

Yesterday, the US Cybersecurity and Infrastructure Security Agency (CISA) added four new vulnerabilities to its catalog of exploited flaws, including this FortiGate bug, meaning federal agencies have until February 4, 2025 to apply the patch or stop using FortiGate entirely.

https://cdn.mos.cms.futurecdn.net/oURxQ8dw8TJ2KxmqQDaio6-1200-80.jpg

Source link

Perplexity will make AI images for you, but ChatGPT is the one doing the work

My favourite premium gaming mouse from Logitech is at its cheapest yet – with more top pointer deals from just AU$125.45

Could the ‘Angry Magpie’ save your business from insider threat and data-related attacks?

Google has tuned up its AI Music Sandbox for musicians and producers

Ex-Israeli Intelligence Official: Shockwaves of Trump’s “Take Over Gaza” Heard, Felt Across Region

What UK political parties are promising in the 2019 general election

Otto Warmbier’s parents want North Korea to suffer for their son’s death

Could a ‘youthquake’ cause Boris Johnson to lose the general election?

Which Celebrity Styles Americans Copy Most in 2025: New Study

New ‘Westworld’ trailer introduces us to another dystopian tech company

What’s the point of ‘Charlie’s Angels’ without Sam Rockwell dancing?

These striking photos capture the future of human flight

Thungela Resources completes share repurchase program

Prosus names Nico Marais as new CFO

BP reports lower-than-expected profit of $1.38 billion

BP Q1 2025 slides reveal $1.4B profit, $750M buyback as company targets cash flow growth

The YouTuber who has become one of Gen Z’s most beloved celebrities

26 last-minute holiday gifts that are still thoughtful and unique

Practicing gratitude regularly can make you less stressed and sleep better

8 things millennials wish you would just stop getting them for the holidays

Fortinet warns a critical vulnerability in its systems could let attackers breach company networks

Thungela Resources completes share repurchase program

Prosus names Nico Marais as new CFO

BP reports lower-than-expected profit of $1.38 billion

BP Q1 2025 slides reveal $1.4B profit, $750M buyback as company targets cash flow growth