Fortinet, one of the world’s leading cybersecurity companies, has confirmed a significant data breach after a cybercriminal claimed to have stolen 440GB of sensitive files from the company’s Microsoft SharePoint server.
This incident has raised alarm, as Fortinet is well-known for providing secure networking products like firewalls, routers, and VPN devices, as well as cybersecurity services, including SIEM, network management, and endpoint protection solutions.
Earlier today, a hacker, going by the alias “Fortibitch,” posted on a hacking forum, stating they had successfully breached Fortinet’s Azure SharePoint server, making off with 440GB of data. The hacker even shared credentials to an S3 bucket, allegedly containing the stolen data, making it available for other cybercriminals to download.
Although the contents of the S3 bucket have not been independently verified, the hacker claimed they attempted to extort a ransom from Fortinet in exchange for keeping the data private. Fortinet reportedly refused to pay.
In response to inquiries about the breach, Fortinet confirmed that customer data was indeed stolen. The company explained that the unauthorized access involved a “third-party cloud-based shared file drive,” where a limited number of files were stored.
Fortinet assured that only a small number of customers were affected and that they have reached out to those impacted. However, they did not disclose exactly how many customers were affected or what specific types of data were compromised.
