Fortinet confirms data breach after hacker claims to steal 440GB of files

Cybersecurity giant Fortinet has confirmed it suffered a data breach after a threat actor claimed to steal 440GB of files from the company’s Microsoft Sharepoint server.

Fortinet is one of the largest cybersecurity companies in the world, selling secure networking products like firewalls, routers, and VPN devices. The company also offers SIEM, network management, and EDR/XDR solutions, as well as consulting services.

Early this morning, a threat actor posted to a hacking forum that they had stolen 440GB of data from Fortinet’s Azure Sharepoint instance. The threat actor then shared credentials to an alleged S3 bucket where the stolen data is stored for other threat actors to download.

BleepingComputer has not accessed this storage bucket to confirm if it contains Fortinet’s stolen files.

The threat actor, known as “Fortibitch,” claims to have tried to extort Fortinet into paying a ransom, likely to prevent the publishing of data, but the company refused to pay.

In response to our questions about incident, Fortinet confirmed that customer data was stolen from a “third-party cloud-based shared file drive.”

“An individual gained unauthorized access to a limited number of files stored on Fortinet’s instance of a third-party cloud-based shared file drive, which included limited data related to a small number of Fortinet customers,” the company told BleepingComputer.

Earlier today, Fortinet did not disclose how many customers are impacted or what kind of data has been compromised but said that it “communicated directly with customers as appropriate.”

A later update shared on Fortinet’s website says that the incident affected less than 0.3% of its customer base and that it has not resulted in any malicious activity targeting customers.

The cybersecurity company also confirmed that the incident did not involve any data encryption, ransomware, or access to Fortinet’s corporate network.

BleepingComputer contacted Fortinet with additional questions about the breach but has not received a reply at this time.

In May 2023, a threat actor claimed to have breached the GitHub repositories for the company Panopta, who was acquired by Fortinet in 2020, and leaked stolen data on a Russian-speaking hacking forum.

Update 9/12/24: Added updated information Fortinet.

Lawrence Abrams

Leave a Comment Cancel Reply

London, GB

10:39 am, Jan 24, 2025

10°C

L: 9° | H: 11°

Feels like 9°C° overcast clouds

Humidity: 78 %

Pressure: 996 mb

Wind: 17 mph WSW

Wind Gust: 31 mph

UV Index: 0

Precipitation: 0 mm

Clouds: 97%

Rain Chance: 0%

Visibility: 10 km

Sunrise: 7:49 am

Sunset: 4:35 pm

DailyHourly

Daily ForecastHourly Forecast

Today 9:00 pm

9° | 11°°C 0.8 mm 80% 16 mph 78 % 1001 mb 0 mm/h

Tomorrow 9:00 pm

3° | 6°°C 1 mm 100% 9 mph 94 % 1009 mb 2.83 mm/h

Sun Jan 26 9:00 pm

3° | 8°°C 1 mm 100% 18 mph 97 % 1008 mb 0 mm/h

Mon Jan 27 9:00 pm

4° | 6°°C 1 mm 100% 17 mph 90 % 987 mb 0 mm/h

Tue Jan 28 9:00 pm

5° | 7°°C 1 mm 100% 13 mph 96 % 999 mb 0 mm/h

Today 12:00 pm

9° | 10°°C 0.8 mm 80% 16 mph 78 % 997 mb 0 mm/h

Today 3:00 pm

8° | 10°°C 0 mm 0% 13 mph 70 % 998 mb 0 mm/h

Today 6:00 pm

6° | 8°°C 0 mm 0% 8 mph 66 % 1000 mb 0 mm/h

Today 9:00 pm

6° | 6°°C 0 mm 0% 6 mph 68 % 1001 mb 0 mm/h

Tomorrow 12:00 am

5° | 5°°C 0 mm 0% 5 mph 85 % 1000 mb 0 mm/h

Tomorrow 3:00 am

5° | 5°°C 0 mm 0% 4 mph 93 % 998 mb 0 mm/h

Tomorrow 6:00 am

5° | 5°°C 0.52 mm 52% 3 mph 94 % 998 mb 0 mm/h

Tomorrow 9:00 am

3° | 3°°C 1 mm 100% 9 mph 84 % 1003 mb 2.83 mm/h

Name	Price	24H (%)
Bitcoin(BTC)	€100,200.62	3.17%
Ethereum(ETH)	€3,233.70	5.76%
XRP(XRP)	€3.03	2.37%
Tether(USDT)	€0.95	0.06%
Solana(SOL)	€251.07	6.68%
Dogecoin(DOGE)	€0.341548	2.31%
USDC(USDC)	€0.95	0.00%
Shiba Inu(SHIB)	€0.000019	1.14%
Pepe(PEPE)	€0.000014	4.27%
Peanut the Squirrel(PNUT)	€0.330956	-4.27%

Fortinet confirms data breach after hacker claims to steal 440GB of files

Share:

Leave a Comment Cancel Reply

Utility link

Useful link

Newsletter

Follow Us