The Register on MSN18m
China-linked group abuses Fortinet 0-day with post-exploit VPN-credential stealer
No word on when or if the issue will be fixed Chinese government-linked snoops are exploiting a zero-day bug in Fortinet's Windows VPN client to steal credentials and other information, according to ...
Update now — Fortinet Windows VPN hacked to steal user data
Cybersecurity researchers has revealed that for months now, Fortinet’s Windows VPN client has been vulnerable to a flaw which ...
Chinese Hackers Exploit Fortinet Zero-Day To Harvest VPN Credentials
Cybersecurity researchers at Volexity recently reported that a Chinese state-affiliated threat actor exploited an ...
SecurityWeek1d
Fortinet VPN Zero-Day Exploited in Malware Attacks Remains Unpatched: Report
The DeepData malware framework was seen exploiting a Fortinet VPN client for Windows zero-day that remains unpatched.
The Register on MSN5d
Fortinet patches VPN app flaw that could give rogue users, malware a privilege boost
Plus a bonus hard-coded local API key A now-patched, high-severity bug in Fortinet's FortiClient VPN application potentially ...
The Register on MSN1d
Critical 9.8-rated VMware vCenter RCE bug exploited after patch fumble
CVE-2024-38813 is a high-severity, 7.5-CVSS rated privilege escalation vulnerability. This one also requires network access ...
The Hacker News3d
Warning: DEEPDATA Malware Exploiting Unpatched Fortinet Flaw to Steal VPN Credentials
BrazenBamboo exploits an unpatched FortiClient flaw to steal VPN credentials using DEEPDATA malware. Fortinet users advised to stay alert.
Fortinet secures FortiOS, FortiAnalyzer and FortiClient
Security vulnerabilities in FortiClient for Windows, FortiAnalyzer and FortiOS make the systems susceptible to attacks.
Chinese hackers exploit Fortinet VPN zero-day to steal credentials
Chinese threat actors use a custom post-exploitation toolkit named 'DeepData' to exploit a zero-day vulnerability in Fortinet ...