Chinese threat actors use a custom post-exploitation toolkit named 'DeepData' to exploit a zero-day vulnerability in Fortinet's FortiClient Windows VPN client that steal credentials. The zero-day ...

A design flaw in the Fortinet VPN server's logging mechanism can be leveraged to conceal the successful verification of credentials during a brute-force attack without tipping off defenders of ...

On Tuesday, Fortinet announced fixes for 19 vulnerabilities, including high-severity bugs in FortiOS, FortiAnalyzer and FortiManager, and FortiClient for Windows. The FortiOS issue, tracked as ...

"This plugin was found to exploit a zero-day vulnerability in the Fortinet VPN client on Windows that allows it to extract the credentials for the ... "This variant is deployed by an installer that ...

Cybersecurity researchers has revealed that for months now, Fortinet’s Windows VPN client has been vulnerable to a flaw which allows threat actors to steal user credentials - and Chinese hackers ...

Fortinet’s Windows VPN client has been vulnerable to a flaw which allows threat actors to steal user credentials - and Chinese hackers have reportedly now started exploiting the bug and stealing ...

Fortinet has released updates that close high-risk vulnerabilities in FortiOS, FortiAnalyzer and FortiClient. Attackers can abuse the vulnerabilities to escalate their privileges, perform ...