Security News > 2021 > November > FBI warns of APT group exploiting FatPipe VPN zero-day since May
The Federal Bureau of Investigation warned of an advanced persistent threat compromising FatPipe router clustering and load balancer products to breach targets' networks.
"As of November 2021, FBI forensic analysis indicated exploitation of a 0-day vulnerability in the FatPipe MPVPN device software going back to at least May 2021," the FBI said in a flash alert issued this week.
After hacking into vulnerable FatPipe devices, the attackers used them to move laterally into their targets' networks.
The zero-day bug exploited in these attacks impacts all FatPipe WARP, MPVPN, and IPVPN device software before the latest releases 10.1.2r60p93 and 10.2.2r44p1.
"A vulnerability in the web management interface of FatPipe software could allow a remote attacker to upload a file to any location on the filesystem on an affected device," the company says.
Yesterday, the FBI also warned in a joint advisory with US, UK, and Australian cybersecurity agencies that an Iranian-backed hacking group is actively exploiting Microsoft Exchange ProxyShell and Fortinet vulnerabilities.