Hackers use Nightmare-Eclipse tools after FortiGate SSL VPN compromise

Threat hunters have confirmed the first real-world intrusion where attackers used the publicly released Nightmare-Eclipse toolkit after gaining access through what appears to be a compromised FortiGate SSL VPN account. Huntress says the activity included BlueHammer, RedSun, and UnDefend, along with a separate tunneling tool it calls BeigeBurrow. The case matters because it shows how […] The post Hackers use Nightmare-Eclipse tools after FortiGate SSL VPN compromise appeared first on VPN Central.