Ars Technica

FortiGate admins report active exploitation 0-day. Vendor isn’t talking.

Fortinet, a maker of network security software, has kept a critical vulnerability under wraps for more than a week amid reports that attackers are using it to execute malicious code on servers used by ...
Bleeping Computer

Mandiant says new Fortinet flaw has been exploited since June

A new Fortinet FortiManager flaw dubbed "FortiJump" and tracked as CVE-2024-47575 has been exploited since June 2024 in zero-day attacks on over 50 servers, according to a new report by Mandiant. For ...
Forbes

New Fortinet Zero-Day Warning—Update Now, Attacks Underway

This voice experience is generated by AI. Learn more. This voice experience is generated by AI. Learn more. Fortinet issues emergency update as zero-day attack confirmed. Updated April 7: Following ...
CSOonline

Russian group uses AI to exploit weakly-protected Fortinet firewalls, says Amazon

The report warns CSOs that while AI is helping unsophisticated threat actors, failure to implement cybersecurity basics is fatal regardless of the attacker's skill. A Russian-speaking threat actor is ...
Morning Overview on MSN

Fortinet rushed an emergency fix after attackers turned its own FortiClient security software into a way to run code on the machines it was meant to protect

Fortinet’s FortiClient endpoint management software, meant to harden corporate and government machines, instead exposed them ...