https://thehackernews.com/2026/01/fortinet-confirms-active-forticloud-sso.html
Fortinet confirms active exploitation of a FortiCloud SSO authentication bypass affecting fully patched FortiGate devices via SAML abuse.
fortinetconfirmsactiveforticloudsso
https://thehackernews.com/2026/01/fortinet-confirms-active-forticloud-sso.html?m=1
Fortinet confirms active exploitation of a FortiCloud SSO authentication bypass affecting fully patched FortiGate devices via SAML abuse.
fortinetconfirmsactiveforticloudsso
https://www.bleepingcomputer.com/news/security/over-25-000-forticloud-sso-devices-exposed-to-remote-attacks/
Internet security watchdog Shadowserver has found over 25,000 Fortinet devices exposed online with FortiCloud SSO enabled, amid ongoing attacks targeting a...
forticloudssodevicesexposedremote
https://www.helpnetsecurity.com/2026/01/28/fortinet-forticloud-sso-zero-day-vulnerability-cve-2026-24858/
Fortinet has begun fixing CVE-2026-24858, a zero-day vulnerability that allowed attackers to log into organizations' FortiGate firewalls.
zero dayfortinetstartspatchingexploited
https://arcticwolf.com/resources/blog-uk/cve-2026-24858-forticloud-sso-authentication-bypass-vulnerability-exploited/
On 27 January 2026, Fortinet released an advisory detailing a critical authentication bypass vulnerability affecting FortiOS, FortiAnalyzer, FortiManager, and...
authentication bypasscveforticloudssovulnerability