Threat Post

Thousands of Fortinet VPN Account Credentials Leaked

They were posted for free by former Babuk gang members who’ve bickered, squabbled and huffed off to start their own darn ransomware businesses, dagnabbit. UPDATE: Subsequent reporting and disclosures ...
Ars Technica

Fortinet SSL-VPN or Windows VPN

I already setup the Fortigate to do SSL-VPN using Active Directory (LDAP) for authentication. It works great, but requires a Fortinet client installation and some ...
TechRadar

Half a million Fortinet VPN passwords leaked online

A cybercriminal has released credentials associated with almost half a million Fortinet VPN accounts online. The account information was supposedly scraped from Fortinet devices, by exploiting a ...
TechRadar

Update now — Fortinet Windows VPN hacked to steal user data

Researchers spot Chinese threat actor stealing login credentials from Fortinet VPN Thefts carried out with the help of a vulnerability discovered in 2023 The bug is yet to be addressed, or even ...
ZDNet

VPN users: If you're on Fortinet, Palo Alto, Pulse Secure, patch now, warns spy agency

If your employees are using virtual private networks (VPNs) from Fortinet, Palo Alto, or Pulse Secure, you really need to patch the products and search through system logs for signs of compromise. As ...
ZDNet

Critical security alert: If you haven't patched this old VPN vulnerability, assume your network is compromised

Cyber criminals and nation-state cyber-espionage operations are actively scanning for unpatched vulnerabilities in Fortinet VPNs; organisations that use Fortigate firewalls on their network, and have ...
Ars Technica

VPN concentrator - Fortinet behind Meraki MX84

I've got a Fortinet provided by our EMR solution that came completely unconfigured. It is supposed to be providing a source NAT VPN tunnel to the EMR's server systems. Now, this will be sitting behind ...