Fortinet VPNs Under Attack From Potential Zero-Day - FortiSIEM Security Tools Also at Risk, so Be on Your Guard

Fortinet VPNs under attack from potential zero-day - FortiSIEM security tools also at risk, so be on your guard

Someone is actively trying to brute-force VPNs which, GreyNoise says, is a signal for an existing zero-day.

Fortinet SSL VPNs Hit by Brute-Force Surge Amid Potential Zero-Day

In the shadowy world of cybersecurity, a sudden surge in brute-force attacks targeting Fortinet’s SSL VPNs has sent ripples through enterprise networks, raising alarms about a possible undisclosed vulnerability. Security researchers at GreyNoise first spotted the anomaly on August 9, noting an unprecedented wave of attempts to crack login credentials using generic usernames like “admin” and “test.” By August 11, the attackers pivoted to FortiMan…

Brute-force attacks hammer Fortinet devices worldwide - Help Net Security

A surge in brute-force attempts targeting Fortinet SSL VPNs that was spotted earlier this month could be a portent of imminent attacks leveraging currently undisclosed (potentially zero-day) vulnerabilities in Fortinet devices. Shifting attacks Greynoise, a cybersecurity intelligence service that through its global network of passive sensors collects, analyzes, and labels data about internet-wide scanning activity, shared on Tuesday that they sa…