The U.S. government has warned that Advanced Persistent Threat (APT) leads are abusing vulnerabilities in Fortinet FortiOS in continuous attacks attacking government, commercial, and technology services networks.
The notice was published in a joint advisory by the FBI and the Cybersecurity and Infrastructure Security Agency (CISA), which follows the latest announcement of security patches covering serious security defects in Fortinet’s flagship FortiOS product.
The two agencies warned over last month threat leads have been observed attacking three vulnerabilities in Fortinet FortiOS, particularly CVE-2018-13379, CVE-2020-12812, and CVE-2019-5591. It is aimed to provide threat stars with access to the networks of government, technology services organizations, and commercial.
To Read More: Security Week