Fortinet on Thursday confirmed suffering a data breach impacting customers after a hacker leaked files allegedly belonging to the cybersecurity company.
The hacker, who uses the online moniker ‘Fortibitch’, made the announcement on a popular hacking forum and claimed that the data — 440 Gb in total — came from an Azure Sharepoint instance.
The threat actor indicated that the decision to make the stolen data available came after Fortinet refused to pay a ransom.
The hacker has shared information for accessing an AWS S3 bucket that allegedly stores the data, but SecurityWeek has not attempted to access it. Several users of the hacker forum complained about not being able to gain access to the files.
Shortly after the hacker posted the information for obtaining the data, Fortinet issued a security incident notice, confirming that “an individual gained unauthorized access to a limited number of files stored on Fortinet’s instance of a third-party cloud-based shared file drive”.
The cybersecurity giant said the compromised data included limited information related to less than 0.3% of its customers.
Fortinet clarified that its operations, products and services have not been affected, and there is no evidence of unauthorized access to other resources.
While the hacker attempted to get a ransom payment, the incident did not involve data encryption, ransomware deployment, or access to the company’s corporate network, Fortinet said.
“To-date there is no indication that this incident has resulted in malicious activity affecting any customers,” Fortinet noted, adding, “Given the limited nature of the incident, we have not experienced, and do not currently believe that the incident is reasonably likely to have, a material impact to our financial condition or operating results.”
Fortinet said the results of its own investigation have been validated by outside forensics experts. The company has notified law enforcement and some cybersecurity agencies.
Related: Fortinet, Zoom Patch Multiple Vulnerabilities
Related: Fortinet Patches Code Execution Vulnerability in FortiOS
Related: Fortinet Expands Cloud Security Portfolio with Lacework Acquisition