Subtle fluctuations in internet activity can serve as premonitory indicators of severe vulnerabilities long before their public disclosure. A nascent report by GreyNoise reveals that adversaries frequently initiate aggressive scanning and reconnaissance of infrastructure...
Fortinet has issued a stark admonition regarding a critical vulnerability discovered within its FortiClient EMS (Endpoint Management Server) ecosystem. This architectural frailty is already being actively exploited by adversaries, prompting the corporation to exhort...
The pursuit of a corporate VPN client across the digital expanse can culminate in the catastrophic exfiltration of credentials. The orchestration of a campaign by the cybercriminal syndicate designated Storm-2561 starkly illuminates the terrifying...
The French national cybersecurity agency, ANSSI, has promulgated its annual compendium of digital threats for the year 2025. The document reveals an alarming tableau: the overarching volume of kinetic assaults persists at a remarkably...
The compromise of a perimeter network appliance can swiftly shepherd a malefactor toward domain controllers and the enterprise’s most critical data repositories. In the nascent months of 2026, cybersecurity sentinels chronicled a sequence of...
Cybersecurity specialists at Arctic Wolf have identified a nascent wave of incursions targeting Fortinet FortiGate firewalls. Adversaries are orchestrating a mass recalibration of device configurations to secure unauthorized access and establish systemic persistence within...
Security researchers at Horizon3 have disseminated a meticulous deconstruction of a burgeoning critical vulnerability within Fortinet FortiSIEM—a widely utilized Security Information and Event Management (SIEM) solution employed by global organizations to oversee their infrastructure....
Fortinet has warned administrators that real-world attacks are once again exploiting the vulnerability FG-IR-19-283 (CVE-2020-12812), first disclosed in July 2020. Under certain FortiGate configurations, the flaw allows attackers to bypass two-factor authentication and log...
Arctic Wolf reports the first confirmed intrusions into customer networks in which attackers logged into FortiGate devices via FortiCloud SSO shortly after the disclosure of two critical authentication-bypass vulnerabilities—CVE-2025-59718 and CVE-2025-59719. According to the...
The Iranian threat group MuddyWater has intensified its cyber-espionage operations with the deployment of a new malicious program known as UDPGangster. According to Fortinet’s FortiGuard Labs, the attacks targeted Turkey, Israel, and Azerbaijan. The...
During AWS’s major outage in October, Fortinet specialists uncovered a new botnet, ShadowV2, built on Mirai-derived malware and targeting IoT devices worldwide. According to FortiGuard Labs, the campaign appeared to be a “trial run”...
In recent days it has become apparent that FortiWeb had been accumulating issues the manufacturer chose not to disclose in advance. After Fortinet acknowledged active exploitation of the critical vulnerability CVE-2025-64446 — which allows...
