Hackers exploit old FortiGate vulnerabilities, use symlink trick to retain limited access to patched devices

A threat actor that has been using known old FortiOS vulnerabilities to breach FortiGate devices for years has also been leveraging a clever trick to maintain undetected read-only access to them after the original access vector was locked down, Fortinet has revealed on Thursday. “[Read-only access] was achieved via creating a symbolic link connecting the user filesystem and the root filesystem in a folder used to serve language files for the SSL-VPN,” Fortinet CISO Carl … More → The post Hackers exploit old FortiGate vulnerabilities, use symlink trick to retain limited access to patched devices appeared first on Help Net Security.
http://news.poseidon-us.com/TK61km

Hackers exploit old FortiGate vulnerabilities, use symlink trick to retain limited access to patched devices

Like this:

Related

More Posts

Creating better healthcare outcomes with Azure OpenAI Service and Azure AI Foundry

3D streaming gets leaner by seeing only what matters

Legal questions linger over deferred resignation program as feds feel pressure to accept offer

Federal benefits face possible cuts in House Republicans’ budget resolution

AI models of the brain could serve as 'digital twins' in research

A new robotic gripper made of measuring tape is sizing up fruit and veggie picking

DHS employees consider workforce transition amid major uncertainty

DHS employees consider workforce transition amid major uncertainty

DHS employees consider workforce transition amid major uncertainty

IRS pauses plan to rehire fired probationary employees, citing recent court decisions

Share this:

Like this:

Related

More Posts