Cyber criminals in the first months of 2021 believed to be Manual deployment of Cring ransomware hit a number of European industrial networks. Kaspersky is that report first How these attacks came about: A vulnerability in Fortinet’s FortiGate VPN.
According to Kaspersky, the infection of a customer was so severe that the industrial process was temporarily shut down as servers controlling the industrial process were encrypted.
The ransomware operators used a FortiOS vulnerability that was originally patched in 2019. CVE-2018-13379This allows an attacker to access the user name and password in clear text. Operators searched systems for vulnerable installations a few days before the system breach, although it is unclear whether this …
