Chinese hackers exploit Fortinet VPN zero-day to steal credentials
Chinese threat actors use a custom post-exploitation toolkit named 'DeepData' to exploit a zero-day vulnerability in Fortinet ...
Fortinet VPN design flaw hides successful brute-force attacks
A design flaw in the Fortinet VPN server's logging mechanism can be leveraged to conceal the successful verification of credentials during a brute-force attack without tipping off defenders of ...
Update now — Fortinet Windows VPN hacked to steal user data
Use precise geolocation data and actively scan device characteristics for identification. This is done to store and access ...
Fortinet secures FortiOS, FortiAnalyzer and FortiClient
Security vulnerabilities in FortiClient for Windows, FortiAnalyzer and FortiOS make the systems susceptible to attacks.
The Hacker News11d
Warning: DEEPDATA Malware Exploiting Unpatched Fortinet Flaw to Steal VPN Credentials
BrazenBamboo exploits an unpatched FortiClient flaw to steal VPN credentials using DEEPDATA malware. Fortinet users advised to stay alert.
SecurityWeek9d
Fortinet VPN Zero-Day Exploited in Malware Attacks Remains Unpatched: Report
The DeepData malware framework was seen exploiting a Fortinet VPN client for Windows zero-day that remains unpatched.
CRN7mon
Fortinet Discloses Vulnerabilities In FortiOS, FortiProxy, FortiClient Linux And Mac
Fortinet disclosed new vulnerabilities Tuesday ... into visiting a malicious attacker-controlled website through the SSL-VPN,” the company said. Additionally, a pair of high-severity ...
Chinese Hackers Exploit Fortinet Zero-Day To Harvest VPN Credentials
Cybersecurity researchers at Volexity recently reported that a Chinese state-affiliated threat actor exploited an unpatched zero-day vulnerability in ...