TECH NEWS

Critical FortiClient EMS Vulnerability Exploited in Fresh Attacks

A critical FortiClient Endpoint Management Server (EMS) vulnerability patched in April has been exploited in fresh attacks to deploy information-stealing malware, Arctic Wolf reports.

The flaw, tracked as CVE-2026-35616 (CVSS score of 9.1), can be exploited remotely via crafted requests for remote code execution (RCE) and does not require authentication.

Fortinet rolled out hotfixes for the security defect in early April, warning that it had been exploited in the wild as a zero-day and urging immediate patching.

Unpatched FortiClient EMS deployments are now being targeted in a campaign deploying the EKZ Infostealer disguised as a fake Fortinet endpoint patch.

The payload was executed via FortiClient-managed VPN scripting workflows, using command scripts that invoked PowerShell, suggesting knowledge of the affected environment.

“The observed execution pattern suggests that threat actors used FortiClient’s own management pathway to push malicious PowerShell commands to managed endpoints in a way that resembled legitimate management operations,” Arctic...

Copyright of this story solely belongs to securityweek.com. To see the full text click HERE

https://cdn1.expresscomputer.in/wp-content/uploads/2025/11/24153409/EC_06_Data_Analytics_Technology_750.jpg

India’s $100 billion GCC ecosystem enters a new phase of AI-led transformation

India’s Global Capability Center (GCC) ecosystem is entering a transformative phase, moving beyond its traditional role as a cost-efficiency engine to become a strategic driver of innovation, enterprise value, and digital transformation. According to a joint report by Nasscom and Zinnov, India’s GCC market has grown into a

https://worksinprogress.co/wip-image/uploads/2026/06/grids_option_1-scaled.jpg

How the data center boom is exposing weaknesses in US power grids and what fixes the electricity infrastructure may need to become fit for the future

Sponsor Posts Fast, affordable law for startups — Soxton automates startup legal so founders can move faster and sleep better. We handle incorporation, advisor, employment and commercial contracts. Join the waitlist for early access! Accelerate AI Adoption at F5's AI Virtual Summit — Learn how to architect, secure, and scale

not set

© 2009-2025 Independent News Service. All rights reserved. * Site Map * Legal disclaimer * Privacy Policy * CSR Policy * RIO * RSS Copyright of this story solely belongs to indiatvnews.com. To see the full text click HERE

Read more

India’s $100 billion GCC ecosystem enters a new phase of AI-led transformation

How the data center boom is exposing weaknesses in US power grids and what fixes the electricity infrastructure may need to become fit for the future

not set

not set