#DeepData

Chinese hackers exploit Fortinet VPN zero-day to steal credentials

by

November 18, 2024 at 05:48PM Chinese hackers “BrazenBamboo” exploit a zero-day vulnerability in Fortinet’s FortiClient VPN using a tool called ‘DeepData’ to extract user credentials. Discovered by Volexity in July 2024, the flaw has not been patched, risking corporate networks. VPN access should be restricted until Fortinet releases a fix. ### Meeting Takeaways 1. **Zero-Day … Read more

LightSpy Spyware Operation Expands to Windows

by

November 15, 2024 at 04:43AM The Chinese APT group APT41 has expanded its LightSpy malware to a Windows surveillance framework named DeepData, enhancing its cross-platform espionage capabilities. This new tool focuses on information theft across various communication platforms and includes features like audio recording, keylogging, and system data gathering. The development began in mid-2022. ### … Read more