Fortinet confirms active exploitation of a FortiCloud SSO authentication bypass affecting fully patched FortiGate devices via SAML abuse.

The Tidyverse Blog offers insights, tutorials, and updates on the Tidyverse, a collection of R packages for data science and statistical computing. Covering topics such as data manipulation, visualization, and analysis, the blog provides resources for R developers looking to leverage the power of the Tidyverse for their data projects. Developers can learn how to use Tidyverse packages effectively to clean, transform, and analyze data in R.

The Hacker News

Fortinet confirmed active exploitation of a FortiCloud SSO authentication bypass affecting fully patched FortiGate firewalls. The new attack path bypasses previous patches for CVE-2025-59718 and CVE-2025-59719 through crafted SAML messages. Attackers create persistence accounts (cloud-noc@mail.io, cloud-init@mail.io), grant VPN access, and exfiltrate firewall configurations. Fortinet recommends restricting administrative access via local-in policies and disabling FortiCloud SSO logins, noting the issue affects all SAML SSO implementations.

Fortinet Confirms Active FortiCloud SSO Bypass on Fully Patched FortiGate Firewalls