The Register on MSN16 天
Fortinet patches VPN app flaw that could give rogue users, malware a privilege boost
Exploiting CVE-2024-50564 involves using a hard-coded local API encryption key that components of Fortinet's software use to ...
Chinese hackers exploit Fortinet VPN zero-day to steal credentials
Chinese threat actors use a custom post-exploitation toolkit named 'DeepData' to exploit a zero-day vulnerability in Fortinet ...
Bleeping Computer9 天
Fortinet VPN design flaw hides successful brute-force attacks
A design flaw in the Fortinet VPN server's logging mechanism can be leveraged to conceal the successful verification of credentials during a brute-force attack without tipping off defenders of ...
The Register on MSN11 天
China-linked group abuses Fortinet 0-day with post-exploit VPN-credential stealer
Chinese government-linked snoops are exploiting a zero-day bug in Fortinet's Windows VPN client to steal credentials and ...