Security News > 2024 > November > China-linked group abuses Fortinet 0-day with post-exploit VPN-credential stealer
2024-11-19 23:02
No word on when or if the issue will be fixed Chinese government-linked snoops are exploiting a zero-day bug in Fortinet's Windows VPN client to steal credentials and other information, according to memory forensics outfit Volexity.…
News URL
https://go.theregister.com/feed/www.theregister.com/2024/11/19/china_brazenbamboo_fortinet_0day/
Related news
- Mitel 0-day, 5-year-old Oracle RCE bug under active exploit (source)
- Hackers leak configs and VPN credentials for 15,000 FortiGate devices (source)
- China-aligned PlushDaemon APT compromises supply chain of Korean VPN (source)
- Clone2Leak attacks exploit Git flaws to steal credentials (source)
- Broadcom Patches VMware Aria Flaws – Exploits May Lead to Credential Theft (source)
- SonicWall firewall exploit lets hackers hijack VPN sessions, patch now (source)
- China-Linked Attackers Exploit Check Point Flaw to Deploy ShadowPad and Ransomware (source)