Security News > 2025 > January > Fortinet Warns of New Zero-Day Used in Attacks on Firewalls with Exposed Interfaces
2025-01-14 09:13
Threat hunters are calling attention to a new campaign that has targeted Fortinet FortiGate firewall devices with management interfaces exposed on the public internet. "The campaign involved unauthorized administrative logins on management interfaces of firewalls, creation of new accounts, SSL VPN authentication through those accounts, and various other configuration changes," cybersecurity firm
News URL
https://thehackernews.com/2025/01/zero-day-vulnerability-suspected-in.html
Related news
- Fortinet fixes critical zero-day exploited in FortiVoice attacks (source)
- Google fixes Android zero-days exploited in attacks, 60 other flaws (source)
- Old Fortinet flaws under attack with new method its patch didn't prevent (source)
- Apple fixes two zero-days exploited in targeted iPhone attacks (source)
- Apple plugs zero-day holes used in targeted iPhone attacks (CVE-2025-31200, CVE-2025-31201) (source)
- Apple Patches Two Zero-Days Used in ‘Extremely Sophisticated’ Attacks (source)
- Phishing detection is broken: Why most attacks feel like a zero day (source)
- DslogdRAT Malware Deployed via Ivanti ICS Zero-Day CVE-2025-0282 in Japan Attacks (source)
- SAP fixes suspected Netweaver zero-day exploited in attacks (source)
- Craft CMS RCE exploit chain used in zero-day attacks to steal data (source)