Over 200,000 businesses that have deployed the Fortigate VPN solution with default configuration are vulnerable to man-in-the-middle (MitM) attacks. The problem lies in the use of default SSL certificates by companies, according to the researchers. Fortinet said it has no plans to address the issue, suggesting that users can manually replace the default certificate and ensure the connections are safe from MitM attacks. In a statement provided to The Hacker News, the company said: “The security of our customers is our first priority”
Source: https://thehackernews.com/2020/09/fortigate-vpn-security.html

