Fortinet Secure LAN Edge Delivered 308% ROI...

1 day ago - Fortinet reports active attacks exploiting CVE-2020-12812, a FortiOS SSL VPN flaw that can bypass two-factor authentication in specific LDAP setups.

Nov 5, 2025 Fortinet Reports Third Quarter 2025 Financial Results · News Release Archive · Aug 22, 2025 | Bleeping Computer Massive anti-cybercrime operation leads to over 1,200 arrests in Africa · Aug 19, 2025 | EdTech Magazine 4 SIEM Solutions ...

2 days ago - Fortinet says threat actors are abusing CVE-2020-12812, an improper authentication vulnerability in FortiOS, in a fresh wave of attacks.

Cybersecurity researchers are sounding the alert about an authentication bypass vulnerability in Fortinet FortiWeb Web Application Firewall (WAF) that could allow an attacker to take over admin accounts and completely compromise a device.

1 week ago - Cybercriminals are actively abusing a long-patched Fortinet FortiGate flaw from July 2020, slipping past two-factor authentication (2FA) on firewalls and potentially granting unauthorized access to VPNs and admin consoles.

5 days ago - Active exploitation of Fortinet VPN bypass observed, Google possibly allowing change of gmail address, June Aflac attack saw data theft

2 days ago - Fortinet has warned customers that threat actors are still actively exploiting a critical FortiOS vulnerability that allows them to bypass two-factor authentication (2FA) when targeting vulnerable FortiGate firewalls.

2 weeks ago - Threat actors have begun to exploit two newly disclosed security flaws in Fortinet FortiGate devices, less than a week after public disclosure. Cybersecurity company Arctic Wolf said it observed active intrusions involving malicious single sign-on ...

Explore the latest cybersecurity trends and innovations, leading edge threat intelligence from FortiGuard Labs, Fortinet executive insights, and customer perspectives.

2 days ago - Fortinet warns of active attacks on a five-year-old vulnerability in FortiOS that bypasses two-factor authentication.

Fortinet videos covering the latest cybersecurity news, events, trends, strategy, and insights from our leading industry experts, customers and partners.

On December 16, 2025, Cybersecurity and Infrastructure Security Agency (CISA) added CVE-2025-59718 to their Known Exploited Vulnerabilities (KEV) DatabaseFootnote 6. Open-source reporting indicates that CVE-2025-59718 is being exploited.

5 days ago - Fortinet researchers observed “recent abuse” of a five-year-old security vulnerability, tracked as CVE-2020-12812 (CVSS score: 5.2), in FortiOS SSL VPN.

2 weeks ago - Fortinet said the flaws were originally discovered by two members of its product security team. The flaws, tracked as CVE-2025-59718 and CVE-2025-59719, allow an attacker to bypass the FortiCloud SSO authentication using a crafted SAML message ...

5 days ago - Threat actors have launched attacks exploiting the half-decade-old medium-severity improper authentication vulnerability in Fortinet's FortiOS SSL VPN, tracked as CVE-2020-12812, according to Security Affairs.

View the latest outbreak alerts tracked by FortiGuard Labs. View the full Outbreak Alert report to understand the impact and outcome of the attack. From the latest Colonial Pipeline ransomware attack to the Microsoft Exchange zero-day exploits.

CISA is aware of the exploitation of two vulnerabilities, CVE-2025-64446 and CVE-2025-58034, in Fortinet FortiWeb, a web application firewall. CISA is also aware that threat actors could exploit CVE-2025-64446 as an initial access vector and then chain CVE-2025-58034 to escalate privileges ...

5 days ago - ✅ August 2025: Imprivata acquired Verosint, adding AI-powered identity threat detection and response capabilities to its cybersecurity portfolio. ✅ July 2025: Jamf was taken private by Francisco Partners in a $2.2 billion deal, reinforcing ...

1 week ago - Fortinet noted on December 9th, when it patched the security flaw tracked as CVE-2025-59718 (FortiOS, FortiProxy, FortiSwitchManager) and CVE-2025-59719 (FortiWeb), that the vulnerable FortiCloud SSO login feature is not enabled until admins ...