Close Menu
TechBrunchTechBrunch
  • Home
  • AI
  • Apps
  • Crypto
  • Security
  • Startups
  • TechCrunch
  • Venture

Subscribe to Updates

Subscribe to our newsletter and never miss our latest news

Subscribe my Newsletter for New Posts & tips Let's stay updated!

What's Hot

Klarna CEO and Sutter Hill wins lap after Jony Ive's Openai deal

May 22, 2025

Bluesky begins to check for “notable” users

May 22, 2025

Microsoft says Lumma Password Stealer Malware found on 394,000 Windows PCs

May 22, 2025
Facebook X (Twitter) Instagram
TechBrunchTechBrunch
  • Home
  • AI

    OpenAI seeks to extend human lifespans with the help of longevity startups

    January 17, 2025

    Farewell to the $200 million woolly mammoth and TikTok

    January 17, 2025

    Nord Security founder launches Nexos.ai to help enterprises move AI projects from pilot to production

    January 17, 2025

    Data proves it remains difficult for startups to raise capital, even though VCs invested $75 billion in the fourth quarter

    January 16, 2025

    Apple suspends AI notification summaries for news after generating false alerts

    January 16, 2025
  • Apps

    Bluesky begins to check for “notable” users

    May 22, 2025

    Mozilla shuts down its Read-It-Later app pocket

    May 22, 2025

    Opening a Social Web Browser Surf makes it easy for anyone to create custom feeds

    May 22, 2025

    Anthropic's new Claude4 AI model can be inferred in many steps

    May 22, 2025

    Strava buys athletic training app – First Runna, and now Breakaway

    May 22, 2025
  • Crypto

    Starting from up to $900 from Ticep, 90% off +1 in 2025

    May 22, 2025

    Early savings for 2025 will end on May 25th

    May 21, 2025

    Coinbase says its data breach will affect at least 69,000 customers

    May 21, 2025

    There are 6 days to save $900 to destroy 2025 tickets

    May 20, 2025

    Save $900 to destroy 2025 tickets before prices rise on May 25th

    May 19, 2025
  • Security

    Microsoft says Lumma Password Stealer Malware found on 394,000 Windows PCs

    May 22, 2025

    Signal's new Windows update prevents the system from capturing screenshots of chat

    May 22, 2025

    Wyden: AT&T, T-Mobile and Verizon did not inform senators of surveillance requests

    May 21, 2025

    US students agree to plead guilty to hacking affecting tens of millions of students

    May 21, 2025

    The people in Elon Musk’s DOGE universe

    May 20, 2025
  • Startups

    7 days left: Founders and VCs save over $300 on all stage passes

    March 24, 2025

    AI chip startup Furiosaai reportedly rejecting $800 million acquisition offer from Meta

    March 24, 2025

    20 Hottest Open Source Startups of 2024

    March 22, 2025

    Andrill may build a weapons factory in the UK

    March 21, 2025

    Startup Weekly: Wiz bets paid off at M&A Rich Week

    March 21, 2025
  • TechCrunch

    OpenSea takes a long-term view with a focus on UX despite NFT sales remaining low

    February 8, 2024

    AI will save software companies' growth dreams

    February 8, 2024

    B2B and B2C are not about who buys, but how you sell

    February 5, 2024

    It's time for venture capital to break away from fast fashion

    February 3, 2024

    a16z's Chris Dixon believes it's time to focus on blockchain use cases rather than speculation

    February 2, 2024
  • Venture

    Klarna CEO and Sutter Hill wins lap after Jony Ive's Openai deal

    May 22, 2025

    Wild story of how Moxxie-led Intestinal Toilet Startup Sloan was registered as a gut toilet startup throne

    May 22, 2025

    Submitted submission raises $17 million to automate tax preparation dr voyages

    May 21, 2025

    In a busy VC landscape, Elizabeth Weil's graffiti venture shows that networks are still important

    May 21, 2025

    A comprehensive list of 2025 tech layoffs

    May 21, 2025
TechBrunchTechBrunch

Hackers are exploiting a new bug in Fortinet firewalls to break into corporate networks

TechBrunchBy TechBrunchJanuary 14, 20253 Mins Read
Facebook Twitter Pinterest Telegram LinkedIn Tumblr WhatsApp Email
Share
Facebook Twitter LinkedIn Pinterest Telegram Email


Security researchers say malicious hackers are exploiting newly discovered vulnerabilities in Fortinet's firewalls to infiltrate businesses and enterprise networks.

In an advisory published Tuesday, security product maker Fortinet said a vulnerability rated critical in its FortiGate firewall, tracked as CVE-2024-55591, is “being exploited in the wild.” I admitted it.

Although Fortinet has made a patch available, security researchers say hackers have been using the vulnerability since December as a zero-day (meaning before Fortinet was aware of the vulnerability and made a fix available). I warned you that there was a lot of sexual abuse going on.

This is the latest example of hackers exploiting vulnerabilities in popular enterprise security products designed to protect corporate networks from intruders. News of the Fortinet bug comes days after it was revealed that attackers were exploiting another zero-day flaw in Ivanti VPN servers that gave them access to customers' networks.

Cybersecurity company Arctic Wolf said in a blog post last week that its researchers observed a recent “massive exploitation” campaign affecting Fortinet FortiGate firewall devices whose management interfaces are exposed to the public internet. said.

Stefan Hostetler, lead threat intelligence researcher at Arctic Wolf, confirmed to TechCrunch that the observed exploit is related to the newly identified CVE-2024-55591 vulnerability in the Fortinet firewall. .

Hostetler told TechCrunch that Arctic Wolf “observed clusters of intrusions affecting dozens of Fortinet devices,” but this was “compared to the total number of actual devices that appear to have been affected.” It was pointed out that this was only a limited sample.

“The evidence points to an effort to exploit a large number of devices within a narrow time frame,” Hostetler added.

In an interview with TechCrunch, Fortinet spokesperson Tiffany Cursi declined to say how many Fortinet customers were compromised as a result of the hacking campaign, but said the company is “actively communicating with customers.” “We are taking the following measures.”

It's unclear who is behind the attack on Fortinet's firewall, but cybersecurity researcher Kevin Beaumont wrote in Mastodon that the vulnerability is “being exploited by ransomware operators.”

Hostetler said a ransomware attack exploiting the bug is “not unexpected” and noted that previous research by Arctic Fox found that “affiliates of ransomware groups such as Akira and Fog have been able to establish VPN connections. We observed that they were using some of the same network providers.”

In a brief statement Tuesday, US Cyber ​​Security CISA urged Fortinet customers to update their affected devices.

In September, Fortinet disclosed a breach involving customer data after an attacker accessed a “limited number of files” stored on a shared third-party cloud drive owned by the organization.



Source link

Share. Facebook Twitter Pinterest LinkedIn Tumblr Email

Related Posts

Microsoft says Lumma Password Stealer Malware found on 394,000 Windows PCs

May 22, 2025

Signal's new Windows update prevents the system from capturing screenshots of chat

May 22, 2025

Wyden: AT&T, T-Mobile and Verizon did not inform senators of surveillance requests

May 21, 2025

US students agree to plead guilty to hacking affecting tens of millions of students

May 21, 2025

The people in Elon Musk’s DOGE universe

May 20, 2025

Cocospy Stalkerware App goes offline after a data breach

May 19, 2025

Leave A Reply Cancel Reply

Top Reviews
Editors Picks

7 days left: Founders and VCs save over $300 on all stage passes

March 24, 2025

AI chip startup Furiosaai reportedly rejecting $800 million acquisition offer from Meta

March 24, 2025

20 Hottest Open Source Startups of 2024

March 22, 2025

Andrill may build a weapons factory in the UK

March 21, 2025
About Us
About Us

Welcome to Tech Brunch, your go-to destination for cutting-edge insights, news, and analysis in the fields of Artificial Intelligence (AI), Cryptocurrency, Technology, and Startups. At Tech Brunch, we are passionate about exploring the latest trends, innovations, and developments shaping the future of these dynamic industries.

Our Picks

Klarna CEO and Sutter Hill wins lap after Jony Ive's Openai deal

May 22, 2025

Bluesky begins to check for “notable” users

May 22, 2025

Microsoft says Lumma Password Stealer Malware found on 394,000 Windows PCs

May 22, 2025

Subscribe to Updates

Subscribe to our newsletter and never miss our latest news

Subscribe my Newsletter for New Posts & tips Let's stay updated!

© 2025 TechBrunch. Designed by TechBrunch.
  • Home
  • About Tech Brunch
  • Advertise with Tech Brunch
  • Contact us
  • DMCA Notice
  • Privacy Policy
  • Terms of Use

Type above and press Enter to search. Press Esc to cancel.