Security News > 2024 > November > Fortinet VPN design flaw hides successful brute-force attacks
2024-11-21 14:38
A design flaw in the Fortinet VPN server's logging mechanism can be leveraged to conceal the successful verification of credentials during a brute-force attack without tipping off defenders of compromised logins. [...]
News URL
Related news
- Ransomware gang creates tool to automate VPN brute-force attacks (source)
- Fortinet: Hackers retain access to patched FortiGate VPNs using symlinks (source)
- Fortinet Warns Attackers Retain FortiGate Access Post-Patching via SSL-VPN Symlink Exploit (source)
- Old Fortinet flaws under attack with new method its patch didn't prevent (source)
- CISA tags SonicWall VPN flaw as actively exploited in attacks (source)
- SonicWall SMA VPN devices targeted in attacks since January (source)