Qilin Ransomware Strikes Again: Fortinet Vulnerabilities Exploited!

Qilin ransomware is doing its best impersonation of a global tour, exploiting Fortinet vulnerabilities to bypass authentication and wreak havoc. With over 310 victims, including high-profile targets like Yangfeng and Synnovis, Qilin’s antics are not just limited to Spanish-speaking countries. Buckle up—this ransomware ride is going global!

3P
Published: June 6, 2025 1:56 pmAdded: June 6, 2025 at 7:14 amAssembled by: The Editor
Pro Dashboard

Hot Take:

Looks like the Qilin ransomware gang has decided to go on a world tour, and they’re starting with Fortinet vulnerabilities as their backstage pass. Who knew that bypassing authentication could be their new hit single? Maybe it’s time for Fortinet to beef up their security playlist before the encore gets out of hand.

Key Points:

  • Qilin, aka Phantom Mantis, is exploiting Fortinet vulnerabilities to launch ransomware attacks.
  • Victim list includes big names like Yangfeng, Lee Enterprises, and Synnovis, causing widespread disruptions.
  • Current focus is on Spanish-speaking countries, but global expansion is expected.
  • CVE-2024-55591 and CVE-2024-21762 are key vulnerabilities being exploited.
  • Almost 150,000 devices remain vulnerable despite patches being available.

Membership Required

 You must be a member to access this content.

View Membership Levels
Already a member? Log in here
The Nimble Nerd
powered by the NSA, er,  GDPR Cookie Compliance
Confessional Booth of Our Digital Sins

Okay, deep breath, let's get this over with. In the grand act of digital self-sabotage, we've littered this site with cookies. Yep, we did that. Why? So your highness can have a 'premium' experience or whatever. These traitorous cookies hide in your browser, eagerly waiting to welcome you back like a guilty dog that's just chewed your favorite shoe. And, if that's not enough, they also tattle on which parts of our sad little corner of the web you obsess over. Feels dirty, doesn't it?