Threat Actor: H4ckManac | H4ckManac
Victim: Fortinet | Fortinet
Price: Not disclosed
Exfiltrated Data Type: Customer information (limited data)
Key Points :
- Unauthorized access to a limited number of files on a third-party cloud-based shared file drive.
- Incident reportedly affected customers within the Asia-Pacific region.
- Fortinet has communicated directly with affected customers regarding the breach.
- The breach was detected on a hacking forum, with claims of 440 GB of data exposed.
- No indication of malicious activity affecting Fortinet’s operations, products, or services.
- Fortinet is conducting a thorough investigation to determine the full extent of the breach.
In a concerning development for cybersecurity giant Fortinet, a potential data breach has come to light, raising alarms about the security of sensitive customer information. The incident reportedly affected customers within the Asia-Pacific region.
Fortinet has confirmed that an unauthorized individual gained access to a limited number of files stored on the company’s instance of a third-party cloud-based shared file drive. These files contained limited data related to a small number of Fortinet customers. The company has stated that it has communicated directly with affected customers.
“An individual gained unauthorized access to a limited number of files stored on Fortinet’s instance of a third-party cloud-based shared file drive, which included limited data related to a small number of Fortinet customers, and we have communicated directly with customers as appropriate,” a company spokesperson said to Cyber Daily.
While the exact timeline of the incident remains unclear, sources suggest that it occurred last month. However, the Australian Department of Home Affairs only recently discovered the breach. Fortinet is currently conducting a thorough investigation to determine the full extent of the breach and identify any potential impact on its customers.
Adding to the complexity of the situation, a potential data breach at Fortinet has been detected on a hacking forum. The threat actor claims that their Azure SharePoint was leaked, with a massive 440 GB of data exposed. The connection between this claim and the confirmed incident at Fortinet remains to be verified.
🚨Data Breach Alert ‼️
Fortinet: Threat Actor Claims Data Breach, While Company Confirms Unauthorized Access to a Third-Party Service
A potential data breach at Fortinet has been detected on a hacking forum.
The threat actor claims that their Azure SharePoint was leaked, with… pic.twitter.com/2tDbNn3ZJx
— HackManac (@H4ckManac) September 12, 2024
Fortinet has assured its customers that there is no indication that this incident has resulted in any malicious activity affecting them. The company’s operations, products, and services have not been impacted.
Related Posts:
Original Source: https://securityonline.info/fortinet-faces-potential-data-breach-customer-data-at-risk/