The person at the center of this case
Multiple companies and government entities
Cold Case · Open
EDGE DEVICE INTRUSIONS
FBI investigation into widespread cyber intrusions targeting edge devices and computer networks of companies and government entities. An Advanced Persistent Threat group deployed malware exploiting CVE-2020-12271 vulnerability starting April 22, 2020, to exfiltrate sensitive data from firewalls globally. The FBI seeks public assistance in identifying the individuals responsible for these intrusions.
Worldwide
🏛️ Federal Bureau of Investigation (FBI) - Indianapolis Field Office
Case Summary
FBI investigation into widespread cyber intrusions targeting edge devices and computer networks of companies and government entities. An Advanced Persistent Threat group deployed malware exploiting CVE-2020-12271 vulnerability starting April 22, 2020, to exfiltrate sensitive data from firewalls globally. The FBI seeks public assistance in identifying the individuals responsible for these intrusions.
Timeline of Events
📋
2020-04-22
Malware deployment begins
Advanced Persistent Threat group created and deployed malware exploiting CVE-2020-12271 vulnerability targeting edge devices and firewalls worldwide
Points of Interest / Key Leads
🔍
evidence
Lead #1CVE-2020-12271 vulnerability exploitation
🔍
evidence
Lead #2Malware designed to exfiltrate sensitive data from firewalls
🎯
suspect
Lead #3Advanced Persistent Threat group responsible for intrusions
💡
clue
Lead #4Contact FBI via WhatsApp, Signal, or Telegram at 317-792-1100 or tips.fbi.gov
Have information about any of these leads?
Even the smallest detail could be the key to solving this case.
Case Information
Case Type:
Cold Case
Status:
Open
Case Number:288
Started:April 22, 2020
Last Updated:April 26, 2026