China’s Coathanger Malware: Over 20,000 FortiGate Systems Hacked in Massive Cyber Attack

The Netherlands’ cybersecurity agency reveals the Chinese state-sponsored Coathanger malware attack on the Ministry of Defense was far more extensive than initially thought. Around 14,000 FortiGate systems were compromised in a “zero-day period,” highlighting the rising threat to edge devices.

3P
Published: June 12, 2024 2:09 pmAdded: June 12, 2024 at 7:21 amAssembled by: The Editor
Pro Dashboard

Hot Take:

The Netherlands’ Ministry of Defense just got schooled in cybersecurity 101 – courtesy of a “Coathanger” from China. Next time, maybe invest in some better hangers?

Key Points:

  • Attack by Chinese state-sponsored group targeted FortiGate devices.
  • 20,000 FortiGate systems compromised, mostly during a “zero-day period.”
  • Vulnerability: CVE-2022-42475, a critical buffer overflow bug in FortiOS SSL-VPN.
  • Attackers used “Coathanger” malware to maintain persistent access.
  • Many systems are still believed to be infected and controlled by attackers.

Membership Required

 You must be a member to access this content.

View Membership Levels
Already a member? Log in here
The Nimble Nerd
powered by the NSA, er,  GDPR Cookie Compliance
Confessional Booth of Our Digital Sins

Okay, deep breath, let's get this over with. In the grand act of digital self-sabotage, we've littered this site with cookies. Yep, we did that. Why? So your highness can have a 'premium' experience or whatever. These traitorous cookies hide in your browser, eagerly waiting to welcome you back like a guilty dog that's just chewed your favorite shoe. And, if that's not enough, they also tattle on which parts of our sad little corner of the web you obsess over. Feels dirty, doesn't it?