Watch Guard! Qilin affiliate exploits network appliances for initial access

Ctrl-Alt-Intel details a Qilin Ransomware-as-a-Service affiliate whose repeated OPSEC errors (exposed open-directories) revealed Sliver C2 configurations, Chisel/"fos" SOCKS tooling, Python reverse shells, exploit POCs for WatchGuard and Fortinet (multiple CVEs), and multiple Qilin Linux binaries capable of encrypting Linux, ESXi, and Nutanix hosts; the report enumerates C2/IP IOCs, file hashes, victim-linked ransomware samples, and shows heavy targeting of German and US perimeter appliances leading to widespread compromise.