Automated FortiGate Attacks Exploit FortiCloud SSO to Alter Firewall Configurations



January 22, 2026 at 11:25AM

Cybersecurity company Arctic Wolf has warned of a "new cluster of automated malicious activity" that involves unauthorized firewall configuration changes on Fortinet FortiGate devices. The activity, it said, commenced on January 15, 2026, adding it shares similarities with a December 2025 campaign in which malicious SSO logins on FortiGate appliances were recorded against the admin account from

from The Hacker News https://ift.tt/op0HF7r

Genrerating Link.... 15 seconds.

Your Link is Ready.

Share this post