Search

Threat Actor Exploits FortiWeb Appliances to Deploy Sliver C2

Cyber threats and incidents
By Evan Rowe

Related

AI and security

Deloitte Foundation Awards $50K Grant to San Jacinto College to Expand Cybersecurity Talent Pipeline

What happened San Jacinto College in Pasadena, Texas, announced it...
Read more
AI and security

Depthfirst Secures $40M to Advance AI-Driven Vulnerability Management

What happened Cybersecurity startup Depthfirst has raised $40 million in...
Read more
Cyber threats and incidents

Critical Cal.com Authentication Bypass Lets Attackers Take Over User Accounts

What happened A critical Cal.com authentication bypass lets attackers take...
Read more
Cyber threats and incidents

International Takedown Disrupts RedVDS Cybercrime Platform Driving Phishing and Fraud

What happened International takedown disrupts RedVDS cybercrime platform driving phishing...
Read more
Cyber threats and incidents

High‑Severity Palo Alto Networks PAN‑OS DoS Flaw Could Interrupt Firewall Availability

What happened A high‑severity Palo Alto Networks PAN‑OS DoS flaw...
Read more

Share

What happened

Threat actors exploited unpatched FortiWeb web application firewall appliances to deploy the Sliver command-and-control framework. The attackers leveraged exposed management interfaces to gain initial access, establish persistence, and execute malicious commands. Compromised appliances were then used as footholds for further network access.

Who is affected

Organizations running exposed or unpatched FortiWeb appliances are vulnerable to compromise.

Why CISOs should care

Security appliances provide privileged access and are attractive targets for attackers seeking stealthy persistence.

3 practical actions

1. Patch immediately: Apply all Fortinet security updates without delay.

2. Restrict management access: Limit administrative interfaces to trusted networks only.

3. Monitor appliance logs: Watch for unexpected configuration changes or outbound connections.

Previous article
Cyberattack Disrupts Higham Lane School Systems
Next article
GNU Wget2 Vulnerability Allows Arbitrary File Overwrite
AI and security

Deloitte Foundation Awards $50K Grant to San Jacinto College to Expand Cybersecurity Talent Pipeline

What happened San Jacinto College in Pasadena, Texas, announced it...
AI and security

Depthfirst Secures $40M to Advance AI-Driven Vulnerability Management

What happened Cybersecurity startup Depthfirst has raised $40 million in...

Subscribe to our stories

To be updated with all the latest news, offers and special announcements.