FortiGate Devices Exploited for Network Infiltration

Cybersecurity researchers have identified a campaign where threat actors exploit FortiGate Next-Generation Firewall (NGFW) appliances as initial access points to infiltrate victim networks. The attackers leverage recently disclosed security vulnerabilities or weak credentials to extract configuration files containing service account credentials and network topology details. No specific vulnerabilities, CVE IDs, or dates were mentioned in the reported activity. The primary impact involves unauthorized access to sensitive credentials and network information, enabling further compromise of targeted environments. The campaign targets FortiGate devices but does not specify affected versions or geographic scope.