Dark Reading

Fortinet Firewalls Hit With Malicious Configuration Changes

A threat actor has been compromising Fortinet firewalls through single sign-on (SSO) logins over the past week, raising the specter that a previously disclosed and mitigated authentication bypass ...
CSOonline

FortiGate firewall credentials being stolen after vulnerabilities discovered

Threat actors aren’t wasting time taking advantage of newly-revealed vulnerabilities in Fortinet device authentication. Researchers at Arctic Wolf said they are seeing malicious single sign on (SSO) ...
Bleeping Computer

Fortinet warns of critical FortiCloud SSO login auth bypass flaws

Fortinet has released security updates to address two critical vulnerabilities in FortiOS, FortiWeb, FortiProxy, and FortiSwitchManager that could allow attackers to bypass FortiCloud SSO ...
TechRadar

Fortinet patches FortiGate Firewall vulnerabilities that allowed hackers to steal enterprise credentials

SentinelOne reports FortiGate NGFW flaws exploited in early 2026 Three critical bugs (CVE-2025-59718, -59719, -2026-24858) enabled admin access and persistence Fortinet issued patches; firms urged to ...
Bleeping Computer

Fortinet blocks exploited FortiCloud SSO zero day until patch is ready

Fortinet has confirmed a new, actively exploited critical FortiCloud single sign-on (SSO) authentication bypass vulnerability, tracked as CVE-2026-24858, and says it has mitigated the zero-day attacks ...
SDxCentral

Fortinet faces second authentication flaw in a fortnight

Fortinet systems are under threat due to another authentication-based flaw, with security experts warning edge devices are now a vulnerable attack surface for networks. A single sign-on (SSO) ...