Nation-State Actors Infiltrate U.S. by Exploiting Zoho and Fortinet Flaws

Threat Advisories

Nation-State Actors Infiltrate U.S. by Exploiting Zoho and Fortinet Flaws

September 11, 2023
Threat Level
Red
Vulnerability Report

For a detailed threat advisory, download the pdf file here

Summary

Multiple nation-state entities infiltrated a prominent U.S. aeronautics organization by capitalizing on vulnerabilities within Fortinet FortiOS SSL-VPN and Zoho ManageEngine ServiceDesk Plus, subsequently acquiring unauthorized entry and establishing persistence on compromised systems.

To receive real-time threat advisories, please follow HiveForce Labs on LinkedIn.

Recent Posts

Join Our Newsletter 14,000+ subscribers and growing! Get top cybersecurity news delivered directly to your inbox.
Sign Up to Receive Our Weekly Threat Digest