The FBI says state-sponsored attackers breached the webserver of a U.S. municipal government after hacking a Fortinet appliance. The FBI and the CISA also warned last month of hackers that had gained access to Fortinet appliances by exploiting CVE-2018-13379, CVE-2020-12812, and CVE-2019-5591 FortiOS vulnerabilities. The APT group will likely use this access to collect and exfiltrate data from the victims’ network, the FBI says.
Source: https://www.bleepingcomputer.com/news/security/fbi-apt-hackers-breached-us-local-govt-by-exploiting-fortinet-bugs/