Fortinet firewalls hit by huge password-stealing attack — around 75,000 users possibly affected

Researchers discovered a major database containing plaintext passwords.
Network World

FortiBleed campaign exposes 75,000 Fortinet firewalls worldwide

Researchers say threat actors harvested FortiGate credentials at scale, exposing organizations in 194 countries to potential long-term network compromise.
The Next Web

Attackers cracked 75,000 Fortinet firewalls with old passwords, not a zero-day

A leak dubbed FortiBleed exposed plaintext credentials for ~75,000 Fortinet firewalls across 194 countries, including Samsung, Oracle and Siemens. Here's how.
SDxCentral

Fortinet Buys Bradford Networks, Adds Machine Learning to Its Web Application Firewall

It’s been a big week for Fortinet. Yesterday the security vendor updated its web application firewall (WAF) with machine learning capabilities, and Monday it acquired Bradford Networks. Bradford ...
Nasdaq

Fortinet Introduces Self-Learning Artificial Intelligence Appliance for Sub-Second Threat Detection

John Maddison, EVP of products and CMO at Fortinet“Fortinet has invested heavily in FortiGuard Labs cloud-based, AI-driven threat intelligence, allowing us to detect more threats, more quickly and ...
Dark Reading

Fortinet Firewalls Hit With Malicious Configuration Changes

A threat actor has been compromising Fortinet firewalls through single sign-on (SSO) logins over the past week, raising the specter that a previously disclosed and mitigated authentication bypass ...
Bleeping Computer

Fortinet discloses second firewall auth bypass patched in January

Update 2/11/25 07:32 PM ET: After publishing our story, Fortinet has informed us that the new CVE-2025-24472 flaw added to FG-IR-24-535 today is not a zero-day and was already fixed in January.