Who:
Victim: Fortinet, a global cybersecurity company.
Perpetrator: Hacker using the moniker "Fortibitch."
What:
Incident: A data breach resulting in the unauthorized access to 440GB of customer data stored on Fortinet’s third-party cloud-based shared file drive (Azure SharePoint). Fortinet refused a ransom demand, leading the hacker to leak the data on the dark web.
Breach Details: No ransomware or encryption was used, and Fortinet’s corporate network was not compromised. The breach affected less than 0.3% of Fortinet’s customers.
Impact:
Data Leak: The stolen data is available for download on the dark web, but Fortinet claims minimal disruption to its services and no malicious activity affecting customers. The company has launched an investigation and terminated the unauthorized access.
Public Reaction: Fortinet has been praised for not paying the ransom, though the full impact of the breach is still unfolding.
Read the full article HERE