Refine SearchFortiSIEM Outbreak Detection Service
| Name | Status | Update |
|---|---|---|
| Apache ActiveMQ Attack |
Add
|
Ransomware attackers are targeting servers running outdated and vulnerable versions of Apache ActiveMQ by exploiting a recently fixed vulnerability (CVE-2023-46604).
Apache ActiveMQ Attack |
| Citrix Bleed Attack |
Add
|
CVE-2023-4966 is being widely exploited, with multiple threat actors, including ransomware groups, targeting internet-accessible NetScaler ADC and Gateway instances. After exploiting CVE-2023-4966, the attackers may engage in network reconnaissance, stealing account credentials and moving laterally via RDP.
Citrix Bleed Attack |