APT groups are continuing to exploit unpatched flaws in Fortinet products, the FBI says in a flash alert. For example, an APT group apparently recently exploited a Fortigate appliance to access a web server hosting the domain for a U.S. municipal government. The bureau urges users of vulnerable products to immediately patch the flaws to prevent attacks. The FBI also offered risk mitigation steps for Fortinet users that, beyond patching, include: Mitigating the flaws, including mitigation steps.”]
Source: https://www.cuinfosecurity.com/fbi-attackers-continue-to-exploit-unpatched-fortinet-flaws-a-16764