James Forshaw, security researcher at Google's Project Zero, reported nine vulnerabilities in December that could allow ...

Fortinet has confirmed a new, actively exploited critical FortiCloud single sign-on (SSO) authentication bypass vulnerability ...

Fortinet customers are seeing attackers exploiting a patch bypass for a previously fixed critical FortiGate authentication vulnerability (CVE-2025-59718) to hack patched firewalls.

Fortinet has released patches for CVE-2026-24858, an authentication bypass exploited in the wild to compromise devices.

If you’re not sure which EA email is linked, do Fix 3 first to avoid resetting the wrong account. If the EA app is reusing ...

Security firm Mandiant has released a database that allows any administrative password protected by Microsoft’s NTLM.v1 hash algorithm to be hacked in an attempt to nudge users who continue using the ...

Artificial intelligence is a factor, but so is overhiring, higher interest rates and more cautious employers — all as ...

Fortinet confirms active exploitation of a FortiCloud SSO authentication bypass affecting fully patched FortiGate devices via ...

Abib warned that U.S. humanitarian aid to Somalia has also become a target of fraud despite the nation facing a historic ...

CISA added the flaw to its KEVs catalog as Fortinet warned that patches for most affected versions remain “upcoming,” even though vulnerable devices can no longer use cloud SSO until upgraded.

Attackers have been targeting various Fortinet products for some time. A functional security update is still missing.

More work for admins on the cards as they await a full dump of fixes Things aren't over yet for Fortinet customers – the ...