Infosecurity-magazine.com

New Hacking Group Leaks Configuration of 15,000 Fortinet Firewalls

A new threat actor has leaked configuration files and virtual private network (VPN) information for 15,000 firewall devices provided by security vendor Fortinet. On January 15, Kevin Beaumont, an ...
Threat Post

FortiGate VPN Default Config Allows MitM Attacks

The clientā€™s default configuration for SSL-VPN has a certificate issue, researchers said. Default configurations of Fortinetā€™s FortiGate VPN appliance could open organizations to man-in-the-middle ...
ITWire

Fortinet firewalls hit with new zero-day attack, older data leak

On Wednesday, January 15, 2025, a threat actor named ā€œBelsen Groupā€ published a trove of Fortinet FortiGate firewall data on the dark web, allegedly from 15,000 organisations. The data released ...
heise online

Unknown group releases Fortinet config files and VPN passwords to the darknet

Complete config files and VPN passwords in plain text for Fortinet devices have been released by a new group. heise security takes a look at the data set. Usually, you'll get only small gifts in ...
Hosted on MSN

Fortinet FortiGate devices hit in automated attacks which create rogue accounts and steal firewall data

Cybercriminals seem to be taking advantage of a hole in a recent patch for Fortinet FortiGate instances, and are exploiting the vulnerability to create administrator accounts and steal firewall ...

FortiGate Edge Intrusions: Stolen Service Accounts Lead to Rogue Workstations and Deep AD Compromise

Throughout early 2026, SentinelOneā€™s Digital Forensics & Incident Response (DFIR) team has responded to several incidents where FortiGate Next-Generation Firewall (NGFW) appliances have been ...
Bleeping Computer

Mandiant says new Fortinet flaw has been exploited since June

A new Fortinet FortiManager flaw dubbed "FortiJump" and tracked as CVE-2024-47575 has been exploited since June 2024 in zero-day attacks on over 50 servers, according to a new report by Mandiant. For ...