Symbolic Links Planted by Attackers Survived Patching, Provide Read-Only Access. Attackers have been using a new type of post-exploitation technique to maintain remote access to hacked Fortinet FortiGuard devices – even if they had the latest patches – by dropping symbolic links in the device’s filesystem designed to survive the patching process, the vendor has warned.
First seen on govinfosecurity.com
Jump to article: www.govinfosecurity.com/attackers-maintaining-access-to-fully-patched-fortinet-gear-a-27989
