Resellers

Filters

Showing 13–18 of 49 results

Concerns Over Fortinet Flaw Mount; PoC Released, Exploit Activity Grows

October 14, 2022 | News Mention

Dark Reading: 10/14/22 James Horseman, exploit developer at Horizon3.ai says public data from GreyNoise—which tracks Internet scanning activity hitting security tools—shows the number of unique IPs using the exploit has grown from the single digits a few days ago, to over forty as of Oct. 14. Read the entire article here

Attackers Exploiting Critical Fortinet Authentication Bypass

October 14, 2022 | News Mention

Decipher: 10/14/22 “An attacker can use this vulnerability to do just about anything they want to the vulnerable system. This includes changing network configurations, adding new users, and initiating packet captures. Note that this is not the only way to exploit this vulnerability and there may be other sets of conditions that work,” James Horseman of Horizon3.ai, an offensive security...

PoC Published for Fortinet Vulnerability as Mass Exploitation Attempts Begin

October 14, 2022 | News Mention

Security Week: 10/14/22 Penetration testing company Horizon3.ai has made public a PoC exploit that allows an attacker to add an SSH key to the admin user, enabling the attacker to access the targeted system with administrator privileges. The firm has also released technical details, and others have created templates for vulnerability scanners. Read the entire article here

PoC Exploit Released for Critical Fortinet Auth Bypass Bug Under Active Attacks

October 14, 2022 | News Mention

The Hacker News: 10/14/22 “FortiOS exposes a management web portal that allows a user to configure the system,” Horizon3.ai researcher James Horseman said. “Additionally, a user can SSH into the system which exposes a locked down CLI interface.” Read the entire article here

Researchers release PoC for Fortinet firewall flaw, exploitation attempts mount

October 14, 2022 | News Mention

HelpNetSecurity: 10/14/22 Horizon3.ai researchers have released a PoC exploit for CVE-2022-40684, the authentication bypass vulnerability affecting Fortinet‘s firewalls and secure web gateways, and soon after exploitation attempts started rising. Read the entire article here

New auth bypass bug targets FortiGate firewalls and FortiProxy web proxies

October 14, 2022 | News Mention

IT World Canada 10/14/22 Security experts from Horizon3.ai provided a proof-of-concept (PoC) exploit and a technical analysis of the root cause of the vulnerability. This exploit can exploit the authentication bypass flaw to set an SSH key for the user, which is specified from the command line when the Python script is started. Read the entire article here

« Previous
1
2
3
4
5
…
9
Next »

How can NodeZero help you?

Let our experts walk you through a demonstration of NodeZero, so you can see how to put it to work for your company.

Schedule a Demo

Security Strategies

Industry Insights

Attack Research

Attack Content

Security Strategies

Industry Insights

Attack Research

Attack Content

Resellers

Filters

How can NodeZero help you?