Fortinet Faces Potential Data Breach, Customer Data at Risk

In a concerning development for cybersecurity giant Fortinet, a potential data breach has come to light, raising alarms about the security of sensitive customer information. The incident reportedly affected customers within the Asia-Pacific region.

Fortinet has confirmed that an unauthorized individual gained access to a limited number of files stored on the company’s instance of a third-party cloud-based shared file drive. These files contained limited data related to a small number of Fortinet customers. The company has stated that it has communicated directly with affected customers.

“An individual gained unauthorized access to a limited number of files stored on Fortinet’s instance of a third-party cloud-based shared file drive, which included limited data related to a small number of Fortinet customers, and we have communicated directly with customers as appropriate,” a company spokesperson said to Cyber Daily.

While the exact timeline of the incident remains unclear, sources suggest that it occurred last month. However, the Australian Department of Home Affairs only recently discovered the breach. Fortinet is currently conducting a thorough investigation to determine the full extent of the breach and identify any potential impact on its customers.

Adding to the complexity of the situation, a potential data breach at Fortinet has been detected on a hacking forum. The threat actor claims that their Azure SharePoint was leaked, with a massive 440 GB of data exposed. The connection between this claim and the confirmed incident at Fortinet remains to be verified.

🚨Data Breach Alert ‼️

Fortinet: Threat Actor Claims Data Breach, While Company Confirms Unauthorized Access to a Third-Party Service

A potential data breach at Fortinet has been detected on a hacking forum.

The threat actor claims that their Azure SharePoint was leaked, with… pic.twitter.com/2tDbNn3ZJx

— HackManac (@H4ckManac) September 12, 2024

Fortinet has assured its customers that there is no indication that this incident has resulted in any malicious activity affecting them. The company’s operations, products, and services have not been impacted.

Update from Fortinet:

“An individual gained unauthorized access to a limited number of files stored on Fortinet’s instance of a third-party cloud-based shared file drive, which included limited data related to a small number (less than 0.3%) of Fortinet customers. To be clear:

• To-date there is no indication that this incident has resulted in malicious activity affecting any customers.
• Fortinet’s operations, products, and services have not been impacted, and we have identified no evidence of additional access to any other Fortinet resource.
• The incident did not involve any data encryption, deployment of ransomware, or access to Fortinet’s corporate network.
• Fortinet immediately executed on a plan to protect customers and communicated directly with customers as appropriate and supported their risk mitigation plans.
• Given the limited nature of the incident, we have not experienced, and do not currently believe that the incident is reasonably likely to have, a material impact to our financial condition or operating results.”

Related Posts:

• Critical Fortinet Vulnerability Exploited: Hackers Deploy Remote Control Tools and Backdoors
• PoC Exploit Released for Critical Fortinet FortiClient EMS CVE-2023-48788 Flaw
• Linux Users Hit by CrowdStrike Fallout: Kernel Panics Reported
• HTTP/2 Rapid Reset Attack: HTTP/2 Zero-Day Vulnerability Rocks Cybersecurity World
• Beware the New TrickMo Banking Trojan: Enhanced Features, Increased Danger