<ul><li>Chinese threat actor BrazenBamboo has been exploiting a vulnerability in Fortinet's Windows VPN client to steal user login credentials and VPN server information.</li><li>The flaw allows DeepData malware to find and decrypt JSON objects in the client's process memory, enabling the theft of sensitive information.</li><li>Fortinet was informed of the vulnerability in July 2024 but has not yet addressed it or assigned a CVE number for it.</li><li>Users are advised to restrict VPN access and remain vigilant for unusual login activity until a patch becomes available.</li></ul>

Update now — Fortinet Windows VPN hacked to steal user data

Discover more