To the point: Multiple critical vulnerabilities in Fortinet’s FortiSandbox platform are being actively exploited by attackers.
Attackers are actively exploiting multiple critical security flaws in Fortinet’s FortiSandbox threat detection platform, according to threat analysis firm Defused.
Fortinet’s FortiSandbox is a sandbox-based analysis platform that isolates and evaluates suspicious files and behaviors for threat detection. Organizations deploy the system as a protective layer against unknown malware.
According to Defused, multiple critical-severity vulnerabilities in FortiSandbox are currently being actively exploited. Since the platform itself is responsible for threat defense, a successful compromise renders protective mechanisms ineffective or bypassable for downstream systems.
For CISOs, this means immediate verification of affected FortiSandbox installations: available security updates should be deployed promptly, and analysis should be conducted to determine whether FortiSandbox instances in the environment have already been targeted by attacks. Fortinet is typically deployed in network and security infrastructures of large organizations, so a successful compromise could have significant implications for the overall security posture.
Source: www.bleepingcomputer.com · Published June 16, 2026
Lumi AI News — AI-assisted curation pursuant to Art. 50 EU AI Act. Paraphrase and classification by Lumi News Pipeline v1.7.1.