RedGolf Hackers Linked to Fortinet Zero-Day Exploits and Cyber Attack Tools

Despite installed security updates, cybercriminals have managed to gain permanent access to FortiGate devices. The attackers use known and already closed vulnerabilities – but they still put one on it: they leave a so-called backdoor, through which they still retain access even after the patch. This backdoor is based on a symbolic link that links the user file system to the root file system – and this in a folder that is intended for voice files…

RedGolf Hackers Linked to Fortinet Zero-Day Exploits and Cyber Attack Tools

Security researchers have linked the notorious RedGolf hacking group to a wave of exploits targeting Fortinet firewall zero-days and the deployment of custom cyber attack tools. The exposure of a misconfigured server tied to the KeyPlug malware—a hallmark of RedGolf… Read more → The post RedGolf Hackers Linked to Fortinet Zero-Day Exploits and Cyber Attack Tools appeared first on IT Security News.

IT Vulnerability Report: Fortinet Devices Vulnerable To Exploit

Overview Cyble’s vulnerability intelligence unit examined 26 vulnerabilities and 14 dark web exploit claims in recent reports to clients and flagged 10 of the vulnerabilities as meriting high-priority attention by security teams. The vulnerabilities, which can lead to system compromise and data breaches, affect Fortinet products, WordPress plugins, Linux and Android systems, and more. The Top IT Vulnerabilities Here are some of the vulnerabiliti…