Cybersecurity researchers has revealed that for months now, Fortinet’s Windows VPN client has been vulnerable to a flaw which ...

No word on when or if the issue will be fixed Chinese government-linked snoops are exploiting a zero-day bug in Fortinet's ...

Chinese threat actors use a custom post-exploitation toolkit named 'DeepData' to exploit a zero-day vulnerability in Fortinet ...

A now-patched, high-severity bug in Fortinet's FortiClient VPN application potentially allows a low-privilege rogue user or ...

A design flaw in the Fortinet VPN server's logging mechanism can be leveraged to conceal the successful verification of credentials during a brute-force attack without tipping off defenders of ...

The DeepData malware framework was seen exploiting a Fortinet VPN client for Windows zero-day that remains unpatched.

Cybersecurity researchers at Volexity recently reported that a Chinese state-affiliated threat actor exploited an unpatched zero-day vulnerability in ...

Researchers spot Chinese threat actor stealing login credentials from Fortinet VPN Thefts carried out with the help of a vulnerability discovered in 2023 The bug is yet to be addressed ...

Fortinet disclosed new vulnerabilities Tuesday ... into visiting a malicious attacker-controlled website through the SSL-VPN,” the company said. Additionally, a pair of high-severity ...

As of this writing, the Fortinet advisory had not been updated to reflect CISA’s findings. [Related: Ivanti Discloses Fifth Major VPN Vulnerability In A Month] The out-of-bound write ...

despite it being patched by Fortinet in early February. With a severity score of 9.6 out of 10, this out-of-bounds write flaw affects the SSL VPN component, potentially enabling attackers to run ...