Fortinet FortiGate devices face automated attacks creating rogue accounts

Kiswahili

Automated attacks are targeting Fortinet FortiGate devices, creating unauthorized accounts and stealing firewall data. A recent patch from Fortinet may not be as effective as anticipated. The issue was reported on January 23, 2026.

Fortinet FortiGate devices, widely used in network security, are under attack through automated methods that generate rogue accounts and extract sensitive firewall data. According to a TechRadar report published on January 23, 2026, these incidents highlight ongoing vulnerabilities in the devices.

The attacks exploit weaknesses that persist despite a recent Fortinet patch, which appears to fall short in fully addressing the threats. Security experts note that such automated campaigns can rapidly compromise multiple systems, potentially leading to broader network breaches.

Fortinet has not issued further details on the patch's limitations in the available information, but the report underscores the need for users to monitor their devices closely and apply any updates promptly. This development raises concerns about the effectiveness of current cybersecurity measures against evolving automated threats.

Makala yanayohusiana

Illustration of a cyber attack on Cisco devices, showing analysts monitoring screens with code and warnings in a dark operations room.
Picha iliyoundwa na AI

Operation Zero Disco exploits Cisco SNMP flaw for rootkits

Imeripotiwa na AI Picha iliyoundwa na AI

Cyber threat actors in Operation Zero Disco have exploited a vulnerability in Cisco's SNMP service to install persistent Linux rootkits on network devices. The campaign targets older Cisco switches and uses crafted packets to achieve remote code execution. Trend Micro researchers disclosed the attacks on October 16, 2025, highlighting risks to unpatched systems.

WatchGuard Firebox OS patches critical security flaw

WatchGuard has addressed a critical remote code execution vulnerability in its Firebox OS firewall software. The company urges users to update immediately to mitigate the risk. The flaw was identified by the firewall maker itself.

The myth of Linux's invincibility in enterprise security

Imeripotiwa na AI

Linux systems face significant risks from unpatched vulnerabilities, challenging the notion of their inherent security. Experts emphasize the need for automated patch management to protect open-source enterprises effectively.

Teknolojia

Microsoft patches security flaw in Office software

Teknolojia

IBM's AI Bob vulnerable to malware manipulation

Teknolojia

Apple fixes zero-day flaws in WebKit for sophisticated attacks

HPE urges immediate patching of OneView after critical security flaw found

Hewlett Packard Enterprise has instructed customers to patch its OneView software right away due to a top-level security vulnerability. The flaw received a perfect score of 10 out of 10 in severity assessments.

Anthropic's Git MCP server revealed security flaws

Imeripotiwa na AI

Anthropic's official Git MCP server contained worrying security vulnerabilities that could be chained together for severe impacts. The issues were highlighted in a recent TechRadar report. Details emerged on potential risks to the AI company's infrastructure.

North Korean hackers exploit maximum severity React2Shell flaw

North Korean hackers have begun exploiting a critical vulnerability known as React2Shell in malware attacks. This follows similar actions by Chinese hackers, indicating a growing interest in this security flaw. The issue poses significant risks to affected systems.

Microsoft Copilot faces single-click prompt injection vulnerability

Imeripotiwa na AI

Security firm Varonis has identified a new method for prompt injection attacks targeting Microsoft Copilot, allowing compromise of users with just one click. This vulnerability highlights ongoing risks in AI systems. Details emerged in a recent TechRadar report.

Ijumaa, 23. Mwezi wa kwanza 2026, 02:03:13

Huge data leak exposes 149 million credentials without protection

Jumatano, 14. Mwezi wa kwanza 2026, 15:36:41

China directs firms to halt use of US and Israeli cybersecurity software

Jumanne, 13. Mwezi wa kwanza 2026, 14:43:27

US government urged to patch critical Gogs security flaw

Jumatatu, 12. Mwezi wa kwanza 2026, 01:03:02

Gobruterforcer botnet targets Linux servers with brute-force attacks

Ijumaa, 9. Mwezi wa kwanza 2026, 06:48:48

Linux kernel bugs can hide for up to 20 years

Alhamisi, 8. Mwezi wa kwanza 2026, 07:18:04

China-linked UAT-7290 targets telecoms with Linux malware

Jumatano, 7. Mwezi wa kwanza 2026, 09:35:24

Gobruteforcer botnet targets Linux servers worldwide

Jumapili, 21. Mwezi wa kumi na mbili 2025, 12:02:47

Chinese hackers install backdoors via Cisco email zero-day

Ijumaa, 19. Mwezi wa kumi na mbili 2025, 11:19:21

Cisco email security products targeted in zero-day campaign

Alhamisi, 11. Mwezi wa kumi na mbili 2025, 16:50:45

AI scales up cyber attacks in 2025

 

 

 

Tovuti hii inatumia vidakuzi

Tunatumia vidakuzi kwa uchambuzi ili kuboresha tovuti yetu. Soma sera ya faragha yetu kwa maelezo zaidi.
Kataa