FortiBleed campaign used custom FortiGate sniffer to steal credentials

Security firm SOCRadar says the large-scale FortiBleed campaign targeting Fortinet FortiGate devices used custom sniffers to ...
The Hacker News

FortiBleed Targeted FortiGate Firewalls in 110 Million-Credential Harvesting Operation

FortiBleed targeted 430,000 FortiGate firewalls with sniffers and brute-force pipelines that identified over 110 million ...

Massive breach spills credentials for thousands of sensitive networks

Researchers have uncovered a massive breach of Fortinet firewalls that has given Russian-speaking attackers near-unrestricted ...
The Next Web

Attackers cracked 75,000 Fortinet firewalls with old passwords, not a zero-day

A leak dubbed FortiBleed exposed plaintext credentials for ~75,000 Fortinet firewalls across 194 countries, including Samsung, Oracle and Siemens. Here's how.
The Hacker News

Attackers Exploit Three Fortinet FortiSandbox Flaws, One Patched Last Week

Attackers are exploiting three Fortinet FortiSandbox flaws, including one patched last week, risking auth bypass and command ...
SDxCentral

Fortinet faces second authentication flaw in a fortnight

Fortinet systems are under threat due to another authentication-based flaw, with security experts warning edge devices are now a vulnerable attack surface for networks. A single sign-on (SSO) ...
SDxCentral

Thousands of Fortinet firewalls face critical authentication flaw

Security researchers claimed more than 10,000 Fortinet firewalls are at risk from a legacy vulnerability affecting FortiGate SSL VPN. The vulnerability allows users to log in without being prompted ...