Mandiant detects suspected Chinese BOLDMOVE hackers exploiting FortiOS vulnerability across federal entities
Mandiant assesses that the BOLDMOVE Linux variant was deployed on Fortinet devices after successful exploitation of the FortiOS SSL-VPN vulnerability, the post said. ... The researchers wrote in a blog post that malware has been identified as a Windows variant of BOLDMOVE and a Linux variant, which is specifically designed to run on FortiGate firewalls. CVEs: CVE-2022-42475, CVE-2022-49475 Malware: BOLDMOVE(elf.boldmove), BoldMove, BOLDMOVE(win.boldmove) [View Article](https://industrialcyber.co/vulnerabilities/mandiant-detects-suspected-chinese-boldmove-hackers-exploiting-fortios-vulnerability-across-federal-entities/)