Data Breaches Verizon DBIR Flags Major Patch Delays on VPNs, Edge Appliances The latest Verizon DBIR landed this week with a startling statistic about the security posture of VPNs and network edge devices. Ryan Naraine6 days ago
Malware & Threats Threat Actor Allegedly Selling Fortinet Firewall Zero-Day Exploit A threat actor claims to offer a zero-day exploit for an unauthenticated remote code execution vulnerability in Fortinet firewalls. Ionut ArghireApril 14, 2025
Vulnerabilities Fortinet Patches Critical FortiSwitch Vulnerability Fortinet fixes a critical-severity bug in FortiSwitch that could allow an attacker to modify administrative passwords. Ionut ArghireApril 9, 2025
Vulnerabilities Fortinet Patches 18 Vulnerabilities Fortinet has published 17 new advisories to inform customers about 18 vulnerabilities patched in its products. Eduard KovacsMarch 12, 2025
Vulnerabilities Ivanti, Fortinet Patch Remote Code Execution Vulnerabilities Ivanti and Fortinet on Tuesday released patches for multiple critical- and high-severity vulnerabilities in their products. Ionut ArghireFebruary 12, 2025
Data Breaches Data From 15,000 Fortinet Firewalls Leaked by Hackers Hackers have leaked 15,000 Fortinet firewall configurations, which were apparently obtained as a result of exploitation of CVE-2022–40684. Eduard KovacsJanuary 16, 2025
Vulnerabilities Fortinet Confirms New Zero-Day Exploitation Fortinet patches critical vulnerabilities, including a zero-day that has been exploited in the wild since at least November 2024. Eduard KovacsJanuary 15, 2025
Vulnerabilities Fortinet Patches Critical FortiWLM Vulnerability Fortinet has released patches for a critical-severity path traversal vulnerability in FortiWLM that was reported last year. Ionut ArghireDecember 19, 2024
Funding/M&A Fortinet Acquires Perception Point Reportedly for $100 Million Fortinet has acquired Israeli collaboration and email security company Perception Point to expand its offering. Eduard KovacsDecember 12, 2024
Malware & Threats Fortinet VPN Zero-Day Exploited in Malware Attacks Remains Unpatched: Report The DeepData malware framework was seen exploiting a Fortinet VPN client for Windows zero-day that remains unpatched. Ionut ArghireNovember 18, 2024
Malware & Threats Citrix, Cisco, Fortinet Zero-Days Among 2023’s Most Exploited Vulnerabilities Most of the top frequently exploited vulnerabilities in 2023 were initially exploited as zero-days, according to data from government agencies. Ionut ArghireNovember 13, 2024
Vulnerabilities Citrix, Fortinet Patch High-Severity Vulnerabilities Citrix and Fortinet have released patches for multiple vulnerabilities, including high-severity bugs in NetScaler and FortiOS. Ionut ArghireNovember 13, 2024