Fortinet says hackers accessed ‘limited’ number of customer files on third-party drive

Security giant Fortinet said it has contacted some of its customers about a security incident where a hacker accessed files stored on a drive operated by an unnamed third party.

The company did not respond to a range of questions about the incident but told Recorded Future News that someone “gained unauthorized access to a limited number of files stored on Fortinet’s instance of a third-party cloud-based shared file drive.”

The file drive “included limited data related to a small number of Fortinet customers,” and the company said it has communicated directly with customers “as appropriate.” 

“To-date there is no indication that this incident has resulted in malicious activity affecting any customers. Fortinet’s operations, products, and services have not been impacted,” a spokesperson said. 

Questions about how many customers were affected and what kind of data was accessed were not answered. 

The incident was first reported by Australian news outlet CyberDaily, which said it was told some customers were based in the Asia-Pacific region and that the theft occurred last month. 

Fortinet is one of the world’s largest cybersecurity companies, last month reporting a revenue of $1.43 billion in the second quarter of 2024.  

In 2021, the company suffered another security incident where a cybercriminal gang assembled a collection of access credentials for more than 87,000 FortiGate SSL-VPN devices.