In recent months, we have witnessed various data leaks that have affected a wide range of platforms: from online stores and transport companies, to social networks and even public institutions. However, this time the incident has become more relevant, since it has involved Fortinet, one of the leading cybersecurity companies.

Data leak confirmed

Fortinet has confirmed a massive data breach affecting a cloud service operated by a third-party provider. A cybercriminal has stolen approximately 440 GB of information, which is being offered for sale on the Dark Web. Although the actual impact has not yet been determined, this security breach has raised concerns among users.

How did the attack happen?

The attacker would have gained access to Fortinet's Azure SharePoint server, which allowed him to steal the large amount of leaked data. After obtaining the information, he made it available on the network, following a common pattern in this type of attacks, where criminals demand ransoms in exchange for not disclosing the stolen data.

Fortinet's response

On September 12, Fortinet issued a statement confirming the leak. According to the company, the attacker had already posted Amazon S3 credentials on Dark Web forums, where the stolen data is supposedly stored. Although this has alarmed many, the company has assured that its products and services have not been compromised.

How serious is it for users?

From Fortinet they affirm that everything is working normally and that there are no indications that there have been attacks specifically directed against their clients. However, the lack of evidence at this time does not guarantee that users will not be affected in the long term. Leaks of this type often have unpredictable consequences, so it is important that users of related services remain attentive to any official communication.

The data leak at Fortinet shows that even cybersecurity companies are not exempt from suffering attacks of this type. Although no direct damage to users has been identified at this time, the incident highlights the importance of following good security practices and being prepared to face possible risks in the future.