When you purchase through links on our site, we may earn an affiliate commission.Heres how it works.
Experts from Volexity have published an in-depth report on a piece ofmalwarecalled DeepData.
As the experts explain, after a user logs into the VPN, user credentials remain in process memory.
DeepData can find and decrypt JSON objects in the clients process memory, effectively stealing the information.
As a final step, DeepData can exfiltrate the information to a server under the attackers control.
BrazenBamboo
Volexity found the vulnerability in early July 2024, and reported it to Fortinet.
ViaBleepingComputer
