Bleeping Computer

Chinese hackers exploit Fortinet VPN zero-day to steal credentials

Chinese threat actors use a custom post-exploitation toolkit named 'DeepData' to exploit a zero-day vulnerability in Fortinet's FortiClient Windows VPN client that steal credentials. The zero-day ...
Threat Post

Thousands of Fortinet VPN Account Credentials Leaked

They were posted for free by former Babuk gang members who’ve bickered, squabbled and huffed off to start their own darn ransomware businesses, dagnabbit. UPDATE: Subsequent reporting and disclosures ...
Gizmodo

Cybercriminal Gang Just Leaked 500,000 Fortinet VPN Users’ Passwords

A hacker gang has allegedly collected and dumped a large trove of approximately 500,000 login credentials belonging to users of a popular VPN product from cybersecurity firm Fortinet. The threat actor ...
PC Magazine

VPN Login Details Leaked for 500K Fortinet Accounts

UPDATE: A spokesperson for Fortinet provided us with the following statement regarding the VPN leak: "The security of our customers is our first priority. Fortinet is aware that a malicious actor has ...
SlashGear

Fortinet VPN Hacker Leaks 500,000 Users' Passwords

Virtual Private Networks or VPNs have long been used to hide one's actual location and activities on the Internet, either for security purposes or for bypassing region locks. It is one of the standard ...
Bleeping Computer

Fortinet: Hackers retain access to patched FortiGate VPNs using symlinks

Fortinet warns that threat actors use a post-exploitation technique that helps them maintain read-only access to previously compromised FortiGate VPN devices even after the original attack vector was ...
PC Magazine

VPN Login Details Leaked for 500K Fortinet Accounts

UPDATE: A spokesperson for Fortinet provided us with the following statement regarding the VPN leak: "The security of our customers is our first priority. Fortinet is aware that a malicious actor has ...