Reports
AI-generated structured vendor updates
FortiGate Firewalls Breached: 430K Devices Targeted with VPN Credential Sniffing
Attackers compromised approximately 430,000 FortiGate firewalls worldwide, deploying custom sniffers to intercept VPN credentials. The operation is linked to INC Ransom and Lynx ransomware groups, highlighting a new attack surface on edge devices that bypasses traditional EDR/SIEM.
Palo Alto Networks PAN-OS Vulnerabilities: Buffer Overflow and Active Exploitation
Palo Alto Networks disclosed 13 PAN-OS vulnerabilities, with the most critical being CVE-2026-0288 (CVSS 9.2), a buffer overflow in User-ID TSA allowing unauthenticated RCE. CVE-2026-0257, an authentication bypass in GlobalProtect, is actively exploited in the wild.
Fortinet Launches NP7/SP5 Processors and FortiSOC Cloud Platform, Tightening Hardware Lock-in and Operational Control
Fortinet launches FortiGate G-series (3500G/400G) with custom NP7 and SP5 processors, and FortiSOC, a unified cloud-delivered SOC platform consolidating six functions into a single SaaS with AI agents. Q1 revenue hit $1.85B, product revenue up 41%. The move aims to double lock-in via hardware and cloud control plane.
Fortinet FortiAIGate with NVIDIA Shifts AI Security Control to GPU-Accelerated Inline
Fortinet launches FortiAIGate integrating NVIDIA Blackwell GPU and Dynamo inference framework for inline AI workload protection across data center, cloud, and edge. Promises ultra-low latency, multi-tenancy, and data sovereignty compliance.
Cloudflare Embeds Live Threat Intel into WAF, Shifting Control from Manual Rules to Automated Engine
Cloudflare announces integration of real-time threat intelligence (from Cloudforce One) into its WAF engine, enabling proactive rules based on IP, attacker names, target industries, etc. Uses always-on detection with O(1) constant-time lookup for negligible latency. Currently IP-based, with plans for JA3 and domain matching.
Fortinet Hardens AI Security into ASIC with 3500G/400G, Shifting Control to Silicon
Fortinet expands FortiGate G-series with 3500G (400GbE datacenter) and 400G (enterprise edge), natively integrating shadow AI detection and MCP traffic inspection into NP7/SP5 ASICs, shifting AI security from software to silicon for zero-performance-loss security enforcement.
Fortinet Warns of Surging AI-Accelerated Edge Device Attacks with MCP Servers Used for Attack Automation
<p>Fortinet's investigation reveals a rising trend of AI-assisted attacks targeting edge devices. Attackers use MCP servers and AI to automate cyberattacks — requiring only basic network knowledge, they use prompt-based conversational commands to generate attack frameworks, achieving full automation of target identification, password spraying, and vulnerability exploitation. Key IOCs: anomalous admin access from 212[.]11.64.250 or 185[.]196.11.225, unauthorized user accounts (fortiuser, fortinet-support). This marks an inflection point where AI shifts from "defense tool" to "attack weapon."</p>
Fortinet Warns of Surging AI-Accelerated Edge Device Attacks with MCP Servers Used for Attack Automation
<p>Fortinet's investigation reveals a rising trend of AI-assisted attacks targeting edge devices. Attackers use MCP servers and AI to automate cyberattacks — requiring only basic network knowledge, they use prompt-based conversational commands to generate attack frameworks, achieving full automation of target identification, password spraying, and vulnerability exploitation. Key IOCs: anomalous admin access from 212[.]11.64.250 or 185[.]196.11.225, unauthorized user accounts (fortiuser, fortinet-support). This marks an inflection point where AI shifts from "defense tool" to "attack weapon."</p>
Cloudflare GA Post-Quantum IPsec: Hybrid ML-KEM Standard Defeats QKD, Proprietary Suites
Cloudflare announces GA of post-quantum encryption for its IPsec product, implementing hybrid **ML-KEM (FIPS 203)** per **draft-ietf-ipsecme-ikev2-mlkem**. It achieves interoperability with **Cisco IOS XE** and **Fortinet FortiOS 7.6.6+** without special hardware. This extends post-quantum security to site-to-site WAN and explicitly rejects the **QKD** approach.
Fortinet to Announce First Quarter 2026 Financial Results
Fortinet will host a conference call on May 6, 2026, at 1:30 p.m. Eastern Time to discuss its first quarter 2026 financial results. A live webcast and replay will be available on the company's investor relations website.
Fortinet and NVIDIA Collaborate on Isolated Infrastructure Acceleration for AI Factories
Fortinet and NVIDIA have partnered to launch an isolated infrastructure acceleration solution for AI factories, integrating Fortinet's security technologies with NVIDIA's accelerated computing capabilities to enhance the security and performance of AI workloads. The solution focuses on achieving network isolation and security acceleration in AI training and inference environments.
Fortinet and Arista Launch AI Data Center Solution with Converged Networking-Security Architecture
Fortinet and Arista Networks collaborate on a new data center solution that integrates security functions directly into network infrastructure, featuring AI-powered automated threat detection and response with unified control plane management.
Fortinet Extends Sports Sponsorship, Reinforcing Brand and Industry Exposure Strategy
Fortinet has announced the extension of its role as the Official Cybersecurity Partner of the DP World Tour through 2028. This move is part of a branding and market exposure campaign aimed at increasing its visibility among sports and business audiences.
Fortinet to Promote Cybersecurity Leadership at World Economic Forum Annual Meeting
Fortinet announced its participation in the World Economic Forum Annual Meeting 2026 to showcase its cybersecurity leadership. This move aims to influence future cybersecurity policy and technology development directions through a global high-level dialogue platform.
Fortinet Expands CNAPP Risk View with Multi-Dimensional Security Data Integration
Fortinet has enhanced its Cloud-Native Application Protection Platform (CNAPP) with expanded risk assessment capabilities, integrating network traffic analysis, data security posture, and unified risk context to deliver comprehensive visibility into cloud workload security. This upgrade reflects the vendor's architectural shift from single control point defense to cross-domain risk correlation.
Fortinet Integrates Security AI Controls and AI Agents into Network Architecture
Fortinet releases FortiOS 8.0, deeply integrating security AI controls and AI agents into network architecture for the first time, marking its strategic shift from traditional firewall vendor to AI-driven security architecture.
Fortinet Launches AI-Native Security and Networking Convergence Platform
Fortinet introduces a unified security platform emphasizing AI-native security capabilities deeply integrated with network architecture. The platform features built-in AI engines for automated threat detection and enables dynamic security policy enforcement at the network layer.
Fortinet Advances Platform Strategy with SOC, AI and Endpoint Security Integration
Fortinet is advancing its security operations platform by integrating unified SOC, agent AI and extended endpoint security capabilities. This move demonstrates Fortinet's continued investment in platform strategy, particularly in AI-driven security operations.
Fortinet Emphasizes Global Collaboration as Key to Disrupting Cybercrime Networks at Scale
Fortinet's official statement underscores that disrupting cybercrime networks at scale necessitates sustained, deep global collaboration, extending beyond any single vendor or nation. This shifts the security focus from point products to an ecosystem model reliant on threat intelligence sharing and collective action.
Fortinet Emphasizes Cybersecurity Leadership and Social Responsibility, No Specific Technical Architecture Changes
Fortinet published a blog post focusing on cybersecurity leadership and social responsibility at a macro level, discussing industry stewardship, talent development, and societal impact. It did not mention any new product features, technical architectures, platform strategies, or specific deployment implications.