Rewterz Threat Alert – SmokeLoader Malware – Active IOCs

October 6, 2022

Rewterz Threat Alert – DarkCrystal RAT (DCRat) – Active IOCs

October 7, 2022

Rewterz Threat Advisory – CVE-2022-40684 – Fortinet FortiOS and Fortinet FortiProxy Vulnerability

October 7, 2022

Severity

High

Analysis Summary

CVE-2022-40684

Fortinet FortiOS and Fortinet FortiProxy could allow a remote attacker to bypass security restrictions. By sending specially crafted HTTP or HTTPS requests, an attacker could exploit this vulnerability to log into unpatched devices and perform operations on the administrative interface.

Impact

Security Bypass

Indicators Of Compromise

CVE

CVE-2022-40684

Affected Vendors

Fortinet

Affected Products

Fortinet FortiOS 7.0.0
Fortinet FortiOS 7.0.2
Fortinet FortiOS 7.0.1
Fortinet FortiProxy 7.0.0
Fortinet FortiOS 7.0.3
Fortinet FortiProxy 7.0.1
Fortinet FortiOS 7.0.5
Fortinet FortiOS 7.2.0

Remediation

Refer to the Fortinet Security Advisory for patch, upgrade or suggested workaround information.

Fortinet Security Advisory

Rewterz Annual Threat Intelligence Report 2024 - Download Now

Rewterz Annual Threat Intelligence Report 2024 - Download Now

Platform

Managed Security Services

Managed Penetration Testing

Assess

Transform

Train

Respond

Resources

Patchwork APT Group – Active IOCs

VS Code in Browser Exposes Sessions

Multiple F5 BIG-IP Products Vulnerabilities

Threat Insights

About Us

Our Leadership

CSR

Connect with Us

Rewterz Threat Alert – SmokeLoader Malware – Active IOCs

Rewterz Threat Alert – DarkCrystal RAT (DCRat) – Active IOCs

The Wait Is Over!

The Rewterz Annual Threat Intelligence Report 2024 is finally here.