Skip to main content
← All Articles

Tag

#Fortinet

24 articles

Advertisement

TH
HIGH
Threat Intel

Fortinet FortiBleed Campaign: 86,000+ VPN Credentials Stolen

Fortinet addresses the FortiBleed campaign involving 86,000+ confirmed working credentials. Technical analysis and mitigation steps for security professionals.

Runtime Rebel Intel
4 min read·Jun 22, 2026
FortiBleed: 73,932 FortiGate Systems Exposed – Credential Leak Analysis
CRITICAL
Threat Intel

FortiBleed: 73,932 FortiGate Systems Exposed – Credential Leak Analysis

Analysis of the FortiBleed campaign, detailing the exposure of administrative and VPN credentials for over 73,000 Fortinet FortiGate firewalls and critical mitigation

Runtime Rebel Intel
4 min read·Jun 20, 2026
DA
HIGH
Data Breach

FortiBleed Data Leak: Securing Fortinet VPNs Against Exposure

CISA warns organizations after 74,000 Fortinet VPN credentials were leaked online. Learn how to mitigate the FortiBleed threat and secure your network.

Runtime Rebel Intel
3 min read·Jun 19, 2026
DA
HIGH
Data Breach

FortiBleed: 73,000 Fortinet VPN Credentials Exposed

FortiBleed leak compromises Fortinet and FortiGate VPN credentials for over 73,000 firewall URLs globally, posing significant access risks.

Runtime Rebel Intel
4 min read·Jun 18, 2026
Credential Harvesting Heist Compromises 30K+ Fortinet Devices
HIGH
Threat Intel

Credential Harvesting Heist Compromises 30K+ Fortinet Devices

A widespread credential harvesting campaign has compromised over 30,000 Fortinet devices across 200 countries, enabling unauthorized access for threat actors.

Runtime Rebel Intel
4 min read·Jun 17, 2026
Fortinet FortiSandbox: Attackers Exploit CVE-2026-39813, -39808, -25089
CRITICAL
Vulnerabilities

Fortinet FortiSandbox: Attackers Exploit CVE-2026-39813, -39808, -25089

Critical Fortinet FortiSandbox vulnerabilities (CVE-2026-39813, CVE-2026-39808, CVE-2026-25089) are under active exploitation. Patch immediately.

Runtime Rebel Intel
4 min read·Jun 16, 2026
VU
CRITICAL
Vulnerabilities

FortiSandbox RCE via CVE-2024-23108 and CVE-2024-23109 — Patch Now

Unauthenticated attackers are exploiting critical command injection flaws in Fortinet FortiSandbox to achieve RCE. Apply security updates immediately.

Runtime Rebel Intel
3 min read·Jun 16, 2026
VU
CRITICAL
Vulnerabilities

FortiSIEM RCE via CVE-2024-23108: Technical Mitigation Guide

Analysis of critical RCE vulnerabilities CVE-2024-23108 and CVE-2024-23109 in Fortinet FortiSIEM, including detection methods and remediation steps.

Runtime Rebel Intel
3 min read·Jun 15, 2026
FortiSandbox Command Injection (CVE-2026-25089) & Critical Vendor Patches
CRITICAL
Vulnerabilities

FortiSandbox Command Injection (CVE-2026-25089) & Critical Vendor Patches

Critical patches from Fortinet, Ivanti, and SAP address vulnerabilities including CVE-2026-25089 (FortiSandbox command injection), enabling RCE and info disclosure.

Runtime Rebel Intel
4 min read·Jun 10, 2026
VU
CRITICAL
Vulnerabilities

CVE-2026-35616: FortiClient EMS Exploit Delivers EKZ Infostealer

Attackers are actively exploiting CVE-2026-35616, an authentication bypass in FortiClient EMS, to deploy the EKZ infostealer. Protect your organization now.

Runtime Rebel Intel
4 min read·May 28, 2026
VU
CRITICAL
Vulnerabilities

CVE-2023-48788: Critical FortiClient EMS RCE Under Active Exploitation

Exploitation of CVE-2023-48788 in FortiClient EMS allows unauthenticated remote code execution. Administrators must patch to version 7.2.3 or 7.0.11 immediately.

Runtime Rebel Intel
3 min read·May 28, 2026
Ivanti, Fortinet, and n8n Disclose Critical RCE and Auth Bypass Flaws
CRITICAL
Vulnerabilities

Ivanti, Fortinet, and n8n Disclose Critical RCE and Auth Bypass Flaws

Ivanti, Fortinet, n8n, and SAP release urgent security patches for critical vulnerabilities including CVE-2026-5444 and CVE-2026-8043. Update systems now.

Runtime Rebel Intel
3 min read·May 18, 2026