Impacted FortiGate devices had their configuration data, user information, and FortiOS256-hashed credentials exfiltrated as a result of the intrusions, a report from Google Cloud Mandiant showed.
Article Link: New Fortinet FortiManager bug subjected to months-long exploitation | SC Media