Attackers have been targeting various Fortinet products for some time. A functional security update is still missing.

Fortinet has confirmed a new, actively exploited critical FortiCloud single sign-on (SSO) authentication bypass vulnerability ...

CISA added the flaw to its KEVs catalog as Fortinet warned that patches for most affected versions remain “upcoming,” even ...

Fortinet released updates for an actively exploited FortiOS SSO authentication bypass flaw, CVE-2026-24858, now listed by ...

Fortinet confirms active exploitation of a FortiCloud SSO authentication bypass affecting fully patched FortiGate devices via SAML abuse.

The cybersecurity company pointed out that the fresh campaign resembles December 2025 attacks targeting CVE-2025-59718 and CVE-2025-59719, two critical-severity defects impacting the FortiCloud SSO ...

Fix didn't quite do the job – attackers spotted logging in Fortinet has confirmed that attackers are actively bypassing a December patch for a critical FortiCloud single sign-on (SSO) authentication ...

Automated infections of potentially fully patched FortiGate devices are allowing threat actors to steal firewall ...

Okta is warning about custom phishing kits built specifically for voice-based social engineering (vishing) attacks.

With organizations adopting cloud services, mobile devices, and other digital technologies to meet customer needs and support an increasingly remote workforce, identity has become the security ...

While customers crave seamless authentication experiences across every platform, single sign-on (SSO) has become a game-changer in pleasing users. Regardless of the niche, businesses catering to their ...