LATAM Infrastructure Hit by Fortinet and Ivanti Exploits
ID: bb55c5d9-494d-51aa-87ef-05593072685f
STIX ID: report--bb55c5d9-494d-51aa-87ef-05593072685f
Feed Name: Infosecurity Magazine (News)
CloudSEK uncovered "Operation Escaneo," a coordinated campaign that used public and adapted exploit code against Fortinet, Ivanti and other high‑risk vulnerabilities to breach Mexican and other Latin American government, transport, telecom and financial targets; attackers employed a custom scanner (Kimera), reverse tunnels (Chisel, Neo‑ReGeorg), GRE tunnels and compromised routers to maintain access and exfiltrated large volumes of sensitive data (including >1.3M personal records, AD maps, SSL keys and SAP hashes).
Your team is not currently subscribed to this feed. You must subscribe to it in order to see this post.
