Today's Core Dump is brought to you by ThreatPerspective

Threat Intelligence

Investigating FortiManager Zero-Day Exploitation (CVE-2024-47575)

Description

FMG-VMTM23017412

Malicious Fortinet Device ID

msg="Unregistered device localhost add succeeded"

String indicating exploitation in /log/locallog/elog

changes="Edited device settings (SN FMG-VMTM23017412)"

String indicating exploitation in /log/locallog/elog

changes="Added unregistered device to unregistered table."

String indicating exploitation in /log/locallog/elog

0qsc137p@justdefinition.com

Observed in subs.dat and subs.dat.tmp. This is a disposable email address created by the threat actor.

Purity Supreme

Observed in subs.dat and subs.dat.tmp













Published: 2024-10-23T20:00:00











© Segmentation Fault . All rights reserved.

Privacy | Terms of Use | Contact Us