Cyber criminals have started to exploit vulnerabilities in VPN Servers to infect devices and corporate networks with the Cring ransomware, according to new research by Kaspersky.
A number of attacks using this new ransomware were launched earlier this year. At the time, it was unclear how the attackers responsible could infect the network of an unspecified organization in Europe. However, after an investigation by Kapsersky ICS CERT experts, it was found that unpatched VPN vulnerabilities were to be blamed.
The CVE-2018-13379 The vulnerability in Fortigate VPN servers became common knowledge. While the problem has been addressed and addressed by the company, some organizations have not updated their VPN servers. In fact, so many companies failed to see pre-made lists of the IP addresses of vulnerable servers and Internet-connected devices dark network Forums last fall.
We look at how our …
