Fortinet has confirmed a new, actively exploited critical FortiCloud single sign-on (SSO) authentication bypass vulnerability ...

Admins say attackers are still getting in despite recent patches FortiGate firewalls are getting quietly reconfigured and ...

Attackers have been targeting various Fortinet products for some time. A functional security update is still missing.

Fortinet has released patches for CVE-2026-24858, an authentication bypass exploited in the wild to compromise devices.

To stop the ongoing attacks, the cybersecurity vendor took the drastic step of temporarily disabling FortiCloud single ...

Fortinet confirms active exploitation of a FortiCloud SSO authentication bypass affecting fully patched FortiGate devices via ...

Fortinet customers are seeing attackers exploiting a patch bypass for a previously fixed critical FortiGate authentication vulnerability (CVE-2025-59718) to hack patched firewalls.

A recent Fortinet patch may not work as well as expected ...

More work for admins on the cards as they await a full dump of fixes Things aren't over yet for Fortinet customers – the ...

CISA added the flaw to its KEVs catalog as Fortinet warned that patches for most affected versions remain “upcoming,” even though vulnerable devices can no longer use cloud SSO until upgraded.

The Fortigate units work like you would expect them to. There is no weird command-line stuff necessary. If you understand what a firewall is and what it is supposed to do, you can figure out the ...

Critical vulnerabilities in edge devices are continuing to be discovered by security researchers and rapidly targeted by attackers. Lately this includes a critical ...