FortiClient EMS Exploited via CVE-2026-35616 for EKZ Infostealer Deployment
Source: Technadu
Published:
<p>In May 2026, Arctic Wolf observed a threat cluster actively exploiting CVE-2026-35616 against FortiClient Endpoint Management Server (EMS) deployments to deliver an infostealer disguised as a Fortinet patch. This improper access control vulnerability allows unauthenticated threat actors to bypass