TI Mindmap HUB
Threat Intelligence Report

FortiGate Edge Intrusions | Stolen Service Accounts Lead to Rogue Workstations and Deep AD Compromise

๐Ÿ“… March 20, 2026 ๐Ÿ“ฐ www.sentinelone.com ๐Ÿ” 3 CVE(s) referenced

Attackers exploited FortiGate firewall vulnerabilities to steal service account credentials, enabling them to enroll rogue workstations, deploy remote management tools, and deeply compromise Active Directory environments while evading detection due to insufficient logging.

vendor
CVE-2025-59718, CVE-2026-24858, CVE-2025-59719

Sign in to access the full report including:
detailed analysis, IOCs, MITRE ATT&CK mapping, and STIX bundle.

๐Ÿ” Sign In to Read Full Report

You'll need to accept our Terms of Service to access the platform.

๐Ÿ“Š Visual Mindmap
๐ŸŽฏ IOC Extraction
โš”๏ธ MITRE ATT&CK TTPs
๐Ÿ“ฆ STIX 2.1 Bundle