<ul><li>Fortinet warned of attacks using a now-patched zero-day vulnerability in FortiOS and FortiProxy to hijack Fortinet firewalls.</li><li>The vulnerability is an authentication bypass issue that could allow a remote attacker to gain super-admin privileges.</li><li>Fortinet provides temporary mitigation by disabling the HTTP/HTTPS administrative interface or limiting access via local-in policies.</li><li>Arctic Wolf researchers observed a four-phase campaign involving unauthorized logins, account creation, and config changes on Fortinet firewalls.</li></ul>

Attackers exploit a new zero-day to hijack Fortinet firewalls

Discover more