Fortinet FortiWeb Hit by Hacks Using Public RCE Exploit

Multiple Fortinet FortiWeb systems have come under attack in recent days, with cybersecurity analysts linking the breaches to a known remote code execution vulnerability. Fortinet FortiWeb hit by hacks appears to be the result of public exploits targeting CVE-2025-25257, a flaw that Fortinet recently patched. The attackers reportedly deployed web shells on compromised systems, enabling persistent remote access.

Researchers observed that several affected devices showed signs of unauthorized access shortly after proof-of-concept exploits were released publicly. This timeline has led experts to conclude that threat actors acted quickly to leverage the RCE flaw before system administrators could apply the fix. Fortinet FortiWeb hit by hacks underscores the risks of delayed patching, especially when exploits circulate widely online.

Security professionals urge organizations using FortiWeb appliances to verify patch status and conduct thorough scans for signs of compromise.
Read the full report here:
https://www.bleepingcomputer.com/news/security/new-fortinet-fortiweb-hacks-likely-linked-to-public-rce-exploits/