Security News > 2019 > August > Hackers Hit Unpatched Pulse Secure and Fortinet SSL VPNs
2019-08-26 15:03
Vendors Issued Security Updates to Fix Severe Flaws Several Months AgoPatch or perish redux: Hackers are unleashing automated attacks to find and exploit known flaws in SSL VPNs manufactured by Fortinet and Pulse Secure to steal passwords. The exploits come despite both vendors having released patches several months ago - Pulse Secure in April, Fortinet in May.
News URL
https://www.inforisktoday.com/hackers-hit-unpatched-pulse-secure-fortinet-ssl-vpns-a-12958
Related news
- Chinese hackers exploit Fortinet VPN zero-day to steal credentials (source)
- Hackers exploit critical bug in Array Networks SSL VPN products (source)
- Fortinet patches VPN app flaw that could give rogue users, malware a privilege boost (source)
- Warning: DEEPDATA Malware Exploiting Unpatched Fortinet Flaw to Steal VPN Credentials (source)
- China-linked group abuses Fortinet 0-day with post-exploit VPN-credential stealer (source)
- Fortinet VPN design flaw hides successful brute-force attacks (source)
- Fortinet warns of FortiWLM bug giving hackers admin privileges (source)
- Hackers Exploiting Critical Fortinet EMS Vulnerability to Deploy Remote Access Tools (source)