AI-Powered Attacks Against FortiGate Firewalls

According to a recent report from AWS, a Russian-speaking cybercrime group used readily available generative AI tools to compromise more than 600 internet-exposed FortiGate firewalls. The attacks affected infrastructures in 55 different countries and were concentrated over a period of just over a month.

This incident demonstrates how AI is lowering the barrier to entry for complex cyberattacks, making it easier for cybercriminals to automate and scale their operations. The use of off-the-shelf tools implies that even actors with limited technical skills can orchestrate large-scale campaigns.

For those evaluating on-premise deployments, there are significant trade-offs between control and flexibility. AI-RADAR offers analytical frameworks on /llm-onpremise to evaluate these trade-offs.