NCSC Issues Guidance for Fortinet Customers Affected by 'FortiBleed' Threat Campaign

The UK’s National Cyber Security Centre (NCSC) has issued guidance for Fortinet customers affected by the 'FortiBleed' threat campaign. The notice targets organizations using Fortinet products but does not specify exact versions, affected systems, or a disclosure date. No CVE identifiers or technical details about the vulnerability’s exploitation mechanisms were provided in the announcement. The NCSC’s advisory focuses on mitigating fallout from the campaign rather than detailing its initial attack vectors or scope. The guidance aims to assist impacted entities in responding to the threat.