Persistent Threats Exploit Old Fortinet Vulnerability — Are You Still at Risk?

Heads up from the front lines! Fortinet has dropped a fresh warning: attackers who previously exploited a critical flaw in FortiOS SSL VPN (CVE-2022-42475) are still hanging around in some compromised networks — yes, still! These persistent threats are using advanced techniques like malware-laced kernel drivers and rootkits to keep their grip on affected systems.

This isn’t just a reminder to patch your stuff — it’s a wake-up call. If you’ve ever been hit or even just exposed to this vulnerability, it’s time for a deep dive and a serious security sweep.

At Wavasec, we’re always keeping our eyes on threat actor playbooks, and this is a classic move: break in once, stay forever. Don’t let that happen. If you’re unsure about your exposure, it might be time to call in the pros.

Stay secure — stay Wavasec. 🔐