Cyber defenders said they're seeing a "wave of ransomware attacks" unleashed by attackers who gain initial access by ...

On March 12, Forescout revealed that Mora_001, a ransomware group with connections to LockBit, was exploiting CVE-2025-24472 alongside CVE-2024-55591, another Fortinet vulnerability, when deploying a ...

Security pros spot a new LockBit variant in the wild A potential affiliate abused two Fortinet flaws to deploy the encryptor There are multiple overlaps with LockBit 3.0 LockBit affiliates are using ...

In a report published last week, security researchers at Forescout Research said a group it’s tracking dubbed “Mora_001” is exploiting the Fortinet firewalls, which sit on the edge of a ...

In a report published last week, security researchers at Forescout Research said a group it’s tracking dubbed “Mora_001” is exploiting the Fortinet firewalls, which sit on the edge of a company's ...

Multiple researchers last week spotlighted the exploitation of CVE-2024-55591 and CVE-2025-24472 by a new ransomware group called Mora_001. The Cybersecurity and Infrastructure Security Agency (CISA) ...

Forescout said the group it's tracking as Mora_001 exploited two Fortinet vulnerabilities to gain an initial foothold in victim environments before securing persistence and ultimately deploying a new ...

A new ransomware operator named 'Mora_001' is exploiting two Fortinet vulnerabilities to gain unauthorized access to firewall appliances and deploy a custom ransomware strain dubbed SuperBlack.