Threat Intelligence
Description
FMG-VMTM23017412 | Malicious Fortinet Device ID |
msg="Unregistered device localhost add succeeded" | String indicating exploitation in /log/locallog/elog |
changes="Edited device settings (SN FMG-VMTM23017412)" | String indicating exploitation in /log/locallog/elog |
changes="Added unregistered device to unregistered table." | String indicating exploitation in /log/locallog/elog |
0qsc137p@justdefinition.com | Observed in subs.dat and subs.dat.tmp. This is a disposable email address created by the threat actor. |
Purity Supreme | Observed in subs.dat and subs.dat.tmp |
Published: 2024-10-23T20:00:00