Fortinet, a well-known cybersecurity company, has recently disclosed a breach that involved their customers’ data. According to Fortinet, an unauthorized person gained access to a limited number of files stored on a cloud drive shared with a third-party service. This cloud drive contained data from fewer than 0.3% of Fortinet’s customers.
Although the breach did not involve any encryption, ransomware, or access to Fortinet’s internal network, the company still took the incident seriously. Since Fortinet has more than 500,000 customers, it’s estimated that at least 1,500 businesses may have been affected.
The breach was first reported by Bleeping Computer, who claimed that a threat actor had stolen 440 gigabytes of Fortinet customer files and was selling them online. TechCrunch was also able to confirm the listing.
A Fortinet spokesperson, Stephanie Lira, refused to comment on the incident and did not answer TechCrunch’s questions. However, she did not dispute the number of customers affected by the breach. The incident serves as a reminder of the importance of cybersecurity and the need for companies to take data protection seriously.