Fortinet Warns of Persistent Read-Only Access to Compromised FortiGate VPN Devices

Fortinet has issued a warning that attackers can retain read-only access to compromised FortiGate VPN devices even after the initial vulnerability has been patched. Hackers are utilizing symbolic links to maintain this access, allowing them to continue exploiting the systems despite the applied patches. This method enables attackers to keep monitoring and potentially exploiting the affected systems.