Automated infections of potentially fully patched FortiGate devices are allowing threat actors to steal firewall ...

Fortinet FortiGate devices are being targeted in automated attacks that create rogue accounts and steal firewall ...

Admins say attackers are still getting in despite recent patches FortiGate firewalls are getting quietly reconfigured and ...

A recent Fortinet patch may not work as well as expected ...

Arctic Wolf reports automated attacks on FortiGate devices abusing FortiCloud SSO flaws to change firewall settings and steal ...

Fortinet firewalls are under threat from a single sign-on (SSO) vulnerability, which allows unauthorized configuration changes.

Fortinet confirms active exploitation of a FortiCloud SSO authentication bypass affecting fully patched FortiGate devices via SAML abuse.

Fix didn't quite do the job – attackers spotted logging in Fortinet has confirmed that attackers are actively bypassing a December patch for a critical FortiCloud single sign-on (SSO) authentication ...

Attacks targeting FortiGate firewalls are surging amid fears that two recent Fortinet vulnerabilities have not been properly patched.

Days after admins began reporting that their fully patched firewalls are being hacked, Fortinet confirmed it's working to ...

All SAML SSO implementations, including FortiCloud SSO, are vulnerable to authentication bypass and malicious configuration ...

The cybersecurity company pointed out that the fresh campaign resembles December 2025 attacks targeting CVE-2025-59718 and CVE-2025-59719, two critical-severity defects impacting the FortiCloud SSO ...