The Register on MSN12d
Fortinet patches VPN app flaw that could give rogue users, malware a privilege boost
A now-patched, high-severity bug in Fortinet's FortiClient VPN application potentially allows a low-privilege rogue user or ...
Update now — Fortinet Windows VPN hacked to steal user data
Use precise geolocation data and actively scan device characteristics for identification. This is done to store and access ...
Fortinet VPN design flaw hides successful brute-force attacks
A design flaw in the Fortinet VPN server's logging mechanism can be leveraged to conceal the successful verification of credentials during a brute-force attack without tipping off defenders of ...
Chinese hackers exploit Fortinet VPN zero-day to steal credentials
Chinese threat actors use a custom post-exploitation toolkit named 'DeepData' to exploit a zero-day vulnerability in Fortinet ...
SecurityWeek9d
Fortinet VPN Zero-Day Exploited in Malware Attacks Remains Unpatched: Report
The DeepData malware framework was seen exploiting a Fortinet VPN client for Windows zero-day that remains unpatched.
heise online14d
Fortinet secures FortiOS, FortiAnalyzer and FortiClient
Fortinet also warns that attackers can take over SSL VPN sessions by phishing SAML authentication links in FortiOS without prior login (CVE-2023-50176, CVSS 7.1, high). FortiOS 7.4.4, 7.2.8 and 7. ...
Zawya9d
Fortinet expands partnership with e&
The partnership will serve large enterprise customers across the Middle East Fortinet®, the global cybersecurity leader driving the convergence of networking and security, has announced that e& UAE, ...
techworm.net8d
Chinese Hackers Exploit Fortinet Zero-Day To Harvest VPN Credentials
Cybersecurity researchers at Volexity recently reported that a Chinese state-affiliated threat actor exploited an unpatched zero-day vulnerability in Fortinet’s Windows VPN client, FortiClient, to ...