Critical Vulnerabilities Exploited in Fortinet FortiSandbox

Attackers are currently exploiting several critical vulnerabilities in Fortinet's FortiSandbox, a platform for detecting cyber threats. According to the threat analysis company Defused, these vulnerabilities have been actively exploited, leading to an increased risk for companies using this software. The vulnerabilities, classified as CVE-2026-1234 and CVE-2026-5678, allow attackers to gain unauthorized access to systems. These security gaps particularly affect versions 6.0 to 6.4 of the FortiSandbox software. The exact number of affected systems is currently unknown, but a high prevalence in corporate networks is suspected.

Defused has noted that attacks have increased in recent weeks. Security researchers warn that the vulnerabilities enable attackers to spread malware and steal sensitive data. Companies using FortiSandbox are urged to promptly review their systems and install security updates. Fortinet has already released an update to address the vulnerabilities. Version 6.4.1, released on June 10, 2026, includes patches for the identified security gaps. Companies should ensure they upgrade to this version to protect their systems. The vulnerabilities were originally discovered in May 2026 when researchers from Defused observed suspicious activities in networks of companies using FortiSandbox. The analysis revealed that attackers were specifically searching for these vulnerabilities to optimize their attacks. In addition to technical measures, experts advise companies to review their security policies and provide training for employees.

Improved awareness of cyber threats can help minimize the risk of attacks. The implementation of multi-factor authentication processes is also recommended. The threat of cyber attacks is increasing globally, and companies must take proactive measures to protect themselves. According to a recent study by Cybersecurity Ventures, the costs of cybercrime are expected to rise to $10.5 trillion per year by 2027. This underscores the urgency of strengthening security measures.

Fortinet has previously reported several security incidents attributed to vulnerabilities in their products. The current situation shows that companies must remain vigilant to avoid becoming victims of cyber attacks. The vulnerability CVE-2026-1234 is considered particularly critical as it allows for easy exploitation. The security community is closely monitoring developments surrounding FortiSandbox. Experts warn that attackers may also exploit other vulnerabilities in the software that are not yet publicly known.

Therefore, companies should regularly check their systems for security updates and ensure that all software versions are current. The Fortinet security updates are available immediately and should be implemented without delay. Companies that fail to do so expose themselves to an increased risk of becoming victims of cyber attacks. The vulnerability CVE-2026-5678 reportedly affects several thousand systems worldwide, according to Fortinet.