Govt. security agencies are warning of active scanning for devices on ports 4443, 8443, and 10443.  Documented attacks include: DDoS attacks, ransomware attacks, SQL injection attacks, spearphishing campaigns, website defacements, & disinformation campaigns

FBI-CISA Joint Advisory on Exploitation of Fortinet FortiOS Vulnerabilities | CISA

210402.pdf (ic3.gov)

FBI & CISA have released a Joint Cybersecurity Advisory (CSA) to warn users and administrators of the likelihood that advanced persistent threat (APT) actors are actively exploiting known Fortinet FortiOS vulnerabilities  CVE-2018-13379CVE-2020-12812,  and CVE-2019-5591. APT actors may use these vulnerabilities or other common exploitation techniques to gain initial access to multiple government, commercial, and technology services. CISA encourages users and administrators to review Joint CSA AA21-092A: APT Actors Exploit Vulnerabilities to Gain Initial Access for Future Attacks and implement the recommended mitigations.

By admin