AI DevwWrld CyberDSA Chatbot Summit Cyber Revolution Summit CYSEC Global Cyber Security & Cloud Expo World Series Digital Identity & Authentication Summit Asian Integrated Resort Expo Middle East Low Code No Code Summit TimeAI Summit

Data breach: Fortinet faces new hack, 440GB of stolen information

Fortinet under attack: hackers breach security and make information public. discover the details and the consequences for the privacy of involved users

Fortinet suffered a 440GB data breach by hacker Fortibitch, who published the files to Amazon S3. The company downplays the impact, but warns affected customers. It has improved internal security to prevent future attacks and reassures that its services have not been compromised.

This pill is also available in Italian language

A hacker known as Fortibitch has claimed to have stolen 440 GB of data from Fortinet, a leading cybersecurity company. The company confirmed the incident, but tried to downplay its impact, saying the amount of data affected was limited and there was no evidence of malicious activity directed against the users involved. However, potential privacy risks emerged as the hacker, after a failed extortion attempt, made the files public by making them available on an Amazon S3 bucket and disclosed the credentials used to access the data, likely stolen from Fortinet's Azure SharePoint servers.

Risks to user privacy

Despite Fortinet’s assurances, the public release of the data could still pose risks to user privacy. Hackers have made the credentials used to access the data available, increasing the likelihood that other attackers could exploit them for further attacks. Fortinet estimated that approximately 0.3% of its customers were affected by the incident and said it has taken immediate steps to strengthen internal security, including improvements in account monitoring and detection of potential threats. The situation has been communicated directly to affected customers to ensure full transparency into how the company is handling the crisis.

Fortinet's response and security hardening measures

In the official statement, Fortinet noted that an unauthorized individual was able to access a limited number of files stored on a third-party cloud-based shared file system. These files included data pertaining to only a small number of customers. The company said it had no indication of malicious activity related to the incident and that Fortinet's operations, products, and services were not compromised. Following the incident, the organization has further enhanced its internal security measures to prevent similar events in the future, focusing on tighter account management and increased detection of potential threats.

Previous security breaches for Fortinet

This is not the first time that Fortinet has been at the center of hacking episodes. Already in 2021, the administrator of the hacking forum RAMP published the login credentials for the company's VPN service, compromising the information of approximately 498,908 users, including many Italians. Although the current attack is smaller in scale, Fortinet has stated that it does not expect any negative impact on its revenues. Continued attention to security issues therefore becomes crucial for the company, which must maintain the trust of its customers and further strengthen its defenses against cyber threats in an evolving context.

Follow us on Threads for more pills like this

09/15/2024 17:16

Marco Verro

Last pills

Hacker attack in Lebanon: Hezbollah under fireTechnological shock and injuries: cyber warfare hits Hezbollah in Lebanon

Shocking cyber espionage discoveries: nation-state threatsHow state-of-state cyberwarfare is changing the game in the tech industry: Details and analysis of recent attacks

A new era for Flipper Zero with firmware 1.0Discover the revolutionary features of Flipper Zero firmware 1.0: performance improvements, JavaScript, and enhanced connectivity

EUCLEAK, the vulnerability that allows cloning of YubiKey FIDO sticksLearn how the EUCLEAK vulnerability puts your cryptographic keys at risk