Fortinet firewalls hit by huge password-stealing attack — around 75,000 users possibly affected

Researchers discovered a major database containing plaintext passwords.
Ars Technica

Fortinet SSL-VPN or Windows VPN

I already setup the Fortigate to do SSL-VPN using Active Directory (LDAP) for authentication. It works great, but requires a Fortinet client installation and some ...
Tech Times

Fortinet FortiGate Credential Leak Hits 73,932 Firewalls: Half the Internet-Facing Fleet

Fortinet FortiGate credential leak dubbed FortiBleed has exposed verified admin passwords for 73,932 firewalls in 194 ...
SecurityWeek

FortiBleed: 86,000 Fortinet Device Credentials Compromised

Hackers have compiled a database of over 86,000 working credentials for internet-accessible Fortinet firewalls and VPNs.
Computing

FortiBleed: Leaked admin credentials expose nearly 74,000 Fortinet firewalls worldwide

A recently uncovered dataset known as “FortiBleed” contains user and administrator credentials for 73,932 Fortinet firewall ...
CSO Online

FortiBleed campaign exposes 75,000 Fortinet firewalls worldwide

Researchers say threat actors harvested FortiGate credentials at scale, exposing organizations in 194 countries to potential ...
Infosecurity-magazine.com

Fortinet Addresses Critical FortiGate SSL-VPN Vulnerability

Network security solution provider Fortinet has patched a critical bug in its FortiOS and FortiProxy SSL-VPN software that could be exploited to hijack equipment. The vulnerability, identified as ...
Ars Technica

Fortigate SSL VPN

I've wasted away most of the day trying to get this working. We currently use SSL VPN for remote users. It uses ldap to authenticate the users in AD. In preparation of an AD migration we want a test ...
The Hacker News

Attackers Exploit Three Fortinet FortiSandbox Flaws, One Patched Last Week

Attackers are exploiting three Fortinet FortiSandbox flaws, including one patched last week, risking auth bypass and command ...