Hackers exploit FortiClient EMS flaw to push infostealer malware
Source: Bleepingcomputer
Published:
<p>Hackers are exploiting an authentication bypass vulnerability (CVE-2026-35616) in FortiClient Enterprise Management Server (EMS) to deliver an undocumented credential stealer called EKZ.</p> <p>The attacker disguised the malware as an update for Fortinet endpoints and executed it through VPN scri