From Dark Reading – Threat Actor Tied to LockBit Ransomware Targets Fortinet Users
The Mora_001 group uses similar post-exploitation patterns and ransomware customization originated by LockBit. Read More
Tag CVE-2025-24472
From Cybersecurity Help – Cyber Security Week in Review: March 14, 2025
In brief: Microsoft, Apple fix zero-days, LockBit ransomware dev extradited to the US, and more. Read More
From Security Week – Recent Fortinet Vulnerabilities Exploited in ‘SuperBlack’ Ransomware Attacks
[[{“value”:”The newly discovered SuperBlack ransomware has been exploiting two vulnerabilities in Fortinet firewalls. The post Recent Fortinet Vulnerabilities Exploited in ‘SuperBlack’ Ransomware Attacks appeared first on SecurityWeek.”}]] Read More
From Cyber Security News – SuperBlack Actors Exploiting Two Fortinet Vulnerabilities to Deploy Ransomware
Between late January and early March 2025, cybersecurity researchers at Forescout’s Vedere Labs uncovered a series of sophisticated intrusions leveraging critical Fortinet vulnerabilities. The attacks, attributed to a newly identified threat actor tracked as “Mora_001,” culminated in the deployment of…
From Security Week – Ivanti, Fortinet Patch Remote Code Execution Vulnerabilities
[[{“value”:”Ivanti and Fortinet on Tuesday released patches for multiple critical- and high-severity vulnerabilities in their products. The post Ivanti, Fortinet Patch Remote Code Execution Vulnerabilities appeared first on SecurityWeek.”}]] Read More
From Cyber Security News – FortiOS & FortiProx 0-Day Allows Attackers Hijacks Firewall & Gain Super Admin Access
Fortinet has issued an urgent warning about actively exploiting an already patched authentication bypass zero-day vulnerability (CVE-2025-24472) affecting its FortiOS and FortiProxy products. This critical flaw allows remote attackers to gain super-admin privileges by sending maliciously crafted CSF proxy requests.…