China’s FortiGate attacks more extensive than first thought

June 12, 2024 at 10:06AM The Netherlands’ cybersecurity agency revealed an extensive Chinese state-sponsored malware attack on FortiGate systems, compromising at least 20,000 units, impacting Western governments, defense companies, and international organizations. Coathanger malware provided persistent access and is distinct from other RATs. Dutch intelligence suspects continued Chinese control over infected systems worldwide, highlighting edge … Read more

Chinese hackers breached 20,000 FortiGate systems worldwide

June 11, 2024 at 12:28PM Dutch Military Intelligence and Security Service (MIVD) warned of the significant impact of a Chinese cyber-espionage campaign. Exploiting a critical vulnerability in FortiOS/FortiProxy, Chinese hackers infected 14,000 devices, targeting governments, organizations, and defense industry. They deployed a remote access trojan malware, giving them permanent access to systems and breaching at … Read more

China Caught Dropping RAT Designed for FortiGate Devices

February 8, 2024 at 09:08AM The Dutch Military Intelligence and Security Service (MIVD) uncovered a potent new malware strain called “Coathanger” being used by Chinese state-sponsored threat actors. It targets FortiGate devices and was deployed to spy on the Dutch Ministry of Defense in 2023. The report advises regular risk analysis and patching for edge … Read more

Chinese Coathanger malware hung out to dry by Dutch defense department

February 6, 2024 at 12:17PM Dutch authorities have attributed an attempted cyberattack on the Ministry of Defense to Chinese state-sponsored hackers, uncovering a previously unseen malware named Coathanger. The remote access trojan was specifically designed to target Fortinet’s FortiGate firewalls and was difficult to detect using traditional methods. The attackers’ wide and opportunistic scans exploited … Read more