Techly NewsGet the app

Get the latest tech news

Hackers are exploiting Fortinet firewall bugs to plant ransomware


Security researchers say that a threat actor it calls Mora_001 has ‘close ties’ to the Russia-linked hacking group

Security researchers have observed hackers linked to the notorious LockBit gang exploiting a pair of Fortinet firewall vulnerabilities to deploy ransomware on several company networks. Forescout says the Mora_001 threat actor “exhibits a distinct operational signature,” which the firm says has “close ties” to the LockBit ransomware gang, which was last year disrupted by U.S. authorities. Stefan Hostetler, head of threat intelligence at cybersecurity firm Arctic Wolf, which previously observed exploitation of CVE-2024-55591, tells TechCrunch that Forescout’s findings suggest hackers are “going after the remaining organizations who were unable to apply the patch or harden their firewall configurations when the vulnerability was originally disclosed.”

Get the Android app

Or read this on TechCrunch

Read more on:

Photo of Ransomware

Ransomware

Photo of Hackers

Hackers

Photo of Fortinet

Fortinet

Related news:

News photo

Cybersecurity Alert Warns of 300 Attacks with 'Medusa' Ransomware

News photo

Accused LockBit ransomware developer extradited to the US

News photo

New kids on the ransomware block channel Lockbit to raid Fortinet firewalls

« Apple’s Worst Week Since 2022 Spurs Wall Street to Defend Stock
Los Alamos boffins whip up a speedometer for satellites »