There are still more than 338,000 unpatched FortiGate firewalls
You may not own or personally work with a FortiGate firewall VPN device, but you can rest assured that you are interacting with several devices as you browse the web. Unfortunately there’s also a good chance they are currently vulnerable to a serious exploit, as over a quarter of a million of devices remains unpatched. This is bad news not only for your bank, content provider or online store, but it is also bad news for you.
When you use a VPN you like to think your packets are traveling through secure hardware, but unfortunately this bug is exploited in the wild. It allows an attacker to trigger remote code execution on the device, which can be used to give them complete control over network traffic. This may allow you to be redirected to an imposter site, with no sign from you as the VPN connection itself will remain active and everything will seem fine on your end.
The patch has been available for almost a month now, unfortunately there are a large number of devices that are yet to be patched. Hopefully, the number of unpatched devices will decrease rapidly, but for now, be very careful out there.