Security News

Fortinet VPN design flaw hides successful brute-force attacks
2024-11-21 14:38

A design flaw in the Fortinet VPN server's logging mechanism can be leveraged to conceal the successful verification of credentials during a brute-force attack without tipping off defenders of...

Proton VPN Review: Is It Still Reliable in 2024?
2024-11-21 13:00

ProtonVPN is an all-around VPN that operates under Switzerland’s strong privacy laws, setting it apart from other services in the market.

D-Link tells users to trash old VPN routers over bug too dangerous to identify
2024-11-20 14:32

Vendor offers 20% discount on new model, but not patches Owners of older models of D-Link VPN routers are being told to retire and replace their devices following the disclosure of a serious...

China-linked group abuses Fortinet 0-day with post-exploit VPN-credential stealer
2024-11-19 23:02

No word on when or if the issue will be fixed Chinese government-linked snoops are exploiting a zero-day bug in Fortinet's Windows VPN client to steal credentials and other information, according...

D-Link urges users to retire VPN routers impacted by unfixed RCE flaw
2024-11-19 17:58

D-Link is warning customers to replace end-of-life VPN router models after a critical unauthenticated, remote code execution vulnerability was discovered that will not be fixed on these devices. [...]

Helldown ransomware exploits Zyxel VPN flaw to breach networks
2024-11-19 17:00

The new 'Helldown' ransomware operation is believed to target vulnerabilities in Zyxel firewalls to breach corporate networks, allowing them to steal data and encrypt devices. [...]

Chinese hackers exploit Fortinet VPN zero-day to steal credentials
2024-11-18 21:20

Chinese threat actors use a custom post-exploitation toolkit named 'DeepData' to exploit a zero-day vulnerability in Fortinet's FortiClient Windows VPN client that steal credentials. [...]

5 Best VPNs for Streaming in 2024
2024-11-18 14:30

Discover the top VPN services for streaming that offer fast speeds, reliable connections and access to a wide range of streaming platforms.

Warning: DEEPDATA Malware Exploiting Unpatched Fortinet Flaw to Steal VPN Credentials
2024-11-16 06:25

A threat actor known as BrazenBamboo has exploited an unresolved security flaw in Fortinet's FortiClient for Windows to extract VPN credentials as part of a modular framework called DEEPDATA....

Fortinet patches VPN app flaw that could give rogue users, malware a privilege boost
2024-11-14 22:22

Plus a bonus hard-coded local API key A now-patched, high-severity bug in Fortinet's FortiClient VPN application potentially allows a low-privilege rogue user or malware on a vulnerable Windows...