FortiGate Edge Intrusions: Stolen Service Accounts Lead to Rogue Workstations and Deep AD Compromise

Throughout early 2026, SentinelOne’s Digital Forensics & Incident Response (DFIR) team has responded to several incidents where FortiGate Next-Generation Firewall (NGFW) appliances have been ...

Fortinet closes brute-force and command injection flaws in FortiWeb & Co.

Fortinet closes flaws in FortiWeb and FortiManager, allowing command injection, among other things. FortiGate firewalls were ...
The Hacker News

FortiGate Devices Exploited to Breach Networks and Steal Service Account Credentials

Attackers exploit FortiGate vulnerabilities to steal LDAP credentials and breach networks, enabling AD access and malware ...
Hosted on MSN

Fortinet finally cops to critical make-me-admin bug under active exploitation

Fortinet finally published a security advisory on Friday for a critical FortiWeb path traversal vulnerability under active exploitation – but it appears digital intruders got a month's head start.… ...
Ars Technica

Fortinet stays mum on critical 0-day reportedly under active exploitation

I don't understand this. Isn't, for example, 7.4.5 and above (safe versions) below 7.6.0 (which is a vulnerable version)? Do I just not understand how versioning works? Click to expand... I’m not sure ...

Critical Fortigate firewall vulnerabilities patched

Three vulnerabilities allowed hackers to bypass Fortigate and steal enterprise credentials.
Ars Technica

Fortinet stays mum on critical 0-day reportedly under active exploitation

If you are using Gmail for your Fortinet notifications, Google has flagged and deleted email from Fortigate, in the past, as spam before it even gets to your spam folder. And there is no way to ...