The FBI has warned that a sophisticated group of attackers has been exploiting a zero-day flaw in a brand of virtual private networking (VPN) software since May.

The FBI said its forensic analysis showed that the exploitation of the zero-day vulnerability in the FatPipe WARP, MPVPN and IPVPN software by a group of Advanced Persistent Threats (APT) dates back to at least May 2021, according to the group.

The vulnerability allowed the attackers to gain access to an unrestricted file upload facility to delete a webshell for exploitation activity with root access, resulting in elevated privilege and possible follow-up activity, the FBI said, noting, “The exploitation of this The vulnerability then served as “a stepping stone into a different infrastructure for the APT actors.”

SEE: A successful cybersecurity strategy (ZDNet …

Source link

Leave a Reply