Pakistan’s National Computer Emergency Response Team (National CERT) has issued a cybersecurity advisory urging government bodies, businesses, and operators of critical infrastructure to secure Fortinet FortiGate firewall and VPN systems following a global intrusion campaign affecting tens of thousands of internet-facing devices. The advisory, issued on July 14, 2026, said researchers had identified evidence of […]
Fortinet cybersecurity warning: Pakistan National CERT warns of global compromise affecting 73,932 FortiGate devices across 194 countries.
Critical sectors targeted: Government, banking, telecom, energy, healthcare, and other organizations face elevated cyber intrusion risks.
Immediate mitigation urged: National CERT recommends updates, MFA, credential resets, threat hunting, and restricted management access.
Pakistan’s National Computer Emergency Response Team (National CERT) has issued a cybersecurity advisory urging government bodies, businesses, and operators of critical infrastructure to secure Fortinet FortiGate firewall and VPN systems following a global intrusion campaign affecting tens of thousands of internet-facing devices.
The advisory, issued on July 14, 2026, said researchers had identified evidence of compromise involving approximately 73,932 Fortinet FortiGate instances across 194 countries. According to National CERT, affected systems exposed administrative credentials and could provide attackers with unauthorized access to enterprise and critical infrastructure networks.
The warning applies to organizations in sectors including government, banking, telecommunications, energy, healthcare, education, manufacturing, logistics, information technology, and industrial operations, particularly those using internet-accessible FortiGate firewalls and SSL VPN gateways.
National CERT said the campaign involves large-scale attempts to compromise Fortinet systems through activities including credential harvesting, brute-force attacks, VPN credential cracking, and further movement inside compromised networks.
The advisory stated that attackers had taken advantage of publicly accessible FortiGate management interfaces and older credential storage mechanisms to gain administrative access and maintain access within victim environments.
The cybersecurity agency warned that successful compromises could allow attackers to access VPN gateways, steal credentials, alter firewall security policies, install persistent backdoors, breach Active Directory environments, and extract sensitive information.
National CERT also noted that compromised systems could create risks beyond individual organizations by enabling unauthorized access to connected third-party systems and potentially affecting supply chains.
The warning was confirmed through National CERT’s official cybersecurity advisory, which highlighted findings from security researchers regarding the scale of the global Fortinet compromise campaign.
National CERT has asked organizations to report suspected firewall compromises, unauthorized administrative access, VPN misuse, or related malicious activity through its incident reporting channels.
The advisory places exposure reduction, credential updates, multi-factor authentication, and threat-hunting activities among the highest-priority measures, while configuration reviews, Active Directory assessments, incident reporting, and ongoing monitoring were identified as additional key actions.
| # | Наименование новости | Тональность | Информативность | Дата публикации |
|---|---|---|---|---|
| 1 | The ‘year of AI’: 2026 sees influx of ransomware attacks | -2 | 6 | 26-06-2026 |
| 2 | СМИ: ВС Пакистана сообщили об отражении кибератаки со стороны Индии | 0 | 0 | 13-08-2020 |
| 3 | Центр кибербезопасности РФ предупреждает об угрозе кибератак со стороны США | 0 | 0 | 22-01-2021 |
| 4 | Millions of iPhones at risk of devastating 'DarkSword' cyberattack: 'Act NOW' | -2 | 6 | 19-03-2026 |
| 5 | Apple reveals iPhones are under attack from 'sophisticated' hacks secretly accessing devices: 'Act Now' | -2 | 6 | 15-01-2026 |
| 6 | Hacked, leaked, and held for ransom: The worst breaches of 2026 so far | -2 | 7 | 07-06-2026 |
| 7 | US government says it got hacked — again | -2 | 7 | 02-07-2026 |
| 8 | РКН: инфраструктуру провайдера Lovit атаковали из США, Германии, Швеции | 0 | 0 | 24-03-2025 |
| 9 | "Лаборатория Касперского" выявила хакерскую кампанию, атакующую по ночам | 0 | 0 | 09-06-2025 |