4 days ago - Cybercriminals are actively abusing a long-patched Fortinet FortiGate flaw from July 2020, slipping past two-factor authentication (2FA) on firewalls and potentially granting unauthorized access to VPNs and admin consoles.

4 days ago - Fortinet reports active attacks exploiting CVE-2020-12812, a FortiOS SSL VPN flaw that can bypass two-factor authentication in specific LDAP setups.

4 hours ago - Fortinet says threat actors are abusing CVE-2020-12812, an improper authentication vulnerability in FortiOS, in a fresh wave of attacks.

News Release · November 12, 2025 ... Launch Global Cybercrime Bounty Program · Nov 12, 2025 Fortinet Secure LAN Edge Delivered 308% ROI and 50% Higher NetOps Efficiency ·...

The following versions are impacted ... / Enterprise Security · Cybersecurity researchers are warning of a "significant spike" in brute-force traffic aimed at Fortinet SSL VPN devices....

4 days ago - U.S. CISA adds a flaw in Digiever ... catalog | ... Fortinet researchers observed “recent abuse” of a five-year-old security vulnerability, tracked as CVE-2020-12812 (CVSS score: 5.2), in FortiOS SSL VPN....

CISA has updated this Alert to include an additional vulnerability, CVE-2025-58034, and its relation to CVE-2025-64446, and associated resources. CISA is aware of the exploitation of two vulnerabilities, CVE-2025-64446 and CVE-2025-58034, in Fortinet FortiWeb, a web application firewall.

3 days ago - Active exploitation of Fortinet VPN bypass observed, Google possibly allowing change of gmail address, June Aflac attack saw data theft

Share sensitive information only ... A Cyber Issue ... Fortinet is aware of a threat actor creating a malicious file from previously exploited Fortinet vulnerabilities (CVE-2024-21762, CVE-2023-27997, and CVE-2022-42475) within FortiGate products....

3 days ago - Threat actors have launched attacks exploiting the half-decade-old medium-severity improper authentication vulnerability in Fortinet's FortiOS SSL VPN, tracked as CVE-2020-12812, according to Security Affairs.

2 weeks ago - Threat actors have begun to exploit two newly disclosed security flaws in Fortinet FortiGate devices, less than a week after public disclosure. Cybersecurity company Arctic Wolf said it observed active intrusions involving malicious single sign-on ...

FG-IR-25-647 Multiple Fortinet Products' FortiCloud SSO Login Authentication Bypass CVE-2025-59718 CVE-2025-59718

July 18, 2025 - The Cybersecurity and Infrastructure Security Agency on Friday said it added the flaw to its catalog of known exploited vulnerabilities. Fortinet also confirmed exploitation in an update to its security guidance.

4 days ago - The vulnerability, identified as CVE-2020-12812 and tracked internally as FG-IR-19-283, exploits fundamental differences in how FortiGate processes usernames compared to LDAP directory services.

Fortinet has released security updates to address two critical vulnerabilities in FortiOS, FortiWeb, FortiProxy, and FortiSwitchManager that could allow attackers to bypass FortiCloud SSO authentication.

4 hours ago - Fortinet warns of active attacks on a five-year-old vulnerability in FortiOS that bypasses two-factor authentication.

A concise guide for security leaders on deploying quantum-safe encryption today, covering performance, crypto-agility, NIST standards, and flexible PQC and QKD options ... Learn what Fortinet and global partners uncovered about AI-enabled cybercrime through recent tabletop exercises and how these insights help strengthen defensive strategies.

1 week ago - Fortinet noted on December 9th, when it patched the security flaw tracked as CVE-2025-59718 (FortiOS, FortiProxy, FortiSwitchManager) and CVE-2025-59719 (FortiWeb), that the vulnerable FortiCloud SSO login feature is not enabled until admins ...

5 days ago - Fortinet has observed recent abuse of the July 2020 vulnerability FG-IR-19-283 / CVE-2020-12812 in the wild based on specific configurations.

In each episode, you’ll hear first-hand how security professionals are overcoming cloud risks, securing applications, and reducing security complexity with a Code-to-Cloud approach. ... During Accelerate25 industry leaders, visionaries, and partners came together to shape the future of cybersecurity. Gain exclusive insights into the advancements and strategies that fuel Fortinet’s pioneering solutions, from cutting-edge technology and threat intelligence to resilient infrastructure. ... Fortinet videos covering the latest cybersecurity news, events, trends, strategy, and insights from our leading industry experts, customers and partners.