Fortinet Confirms New Zero-Day Behind Malicious SSO Logins
To stop the ongoing attacks, the cybersecurity vendor took the drastic step of temporarily disabling FortiCloud single sign-on (SSO) authentication for all devices.
The Incident
Fortinet, a leading cybersecurity vendor, has reported the discovery of a new zero-day vulnerability in its FortiCloud SSO service. This vulnerability has been exploited by attackers to perform malicious activities, including unauthorized access and data breaches.
Immediate Response
In response to this threat, Fortinet has taken immediate action to mitigate the impact. The company has temporarily disabled FortiCloud SSO authentication for all devices to prevent further exploitation of the vulnerability.
The Impact
The zero-day vulnerability could have allowed attackers to bypass security measures and gain unauthorized access to sensitive information stored in FortiCloud SSO. This incident highlights the importance of keeping cybersecurity systems up-to-date and implementing robust security protocols.
Steps Taken by Fortinet
- Temporary Disablement: Fortinet has disabled the FortiCloud SSO authentication service to prevent further exploitation of the zero-day vulnerability.
- Patch Development: The company is currently working on a patch to fix the vulnerability and restore normal operations as soon as possible.
- Security Updates: Fortinet has issued security updates to its customers, urging them to update their systems immediately to protect against potential attacks.
Conclusion
This incident serves as a reminder of the ongoing threat landscape in cybersecurity. Fortinet’s swift action in disabling SSO authentication and issuing security updates demonstrates its commitment to protecting its customers from potential threats.
Articles connexes
