All Topics
All Topics
Technology
Technology
AI
AI
Business
Business
Entertainment
Entertainment
News
News
Programming
Programming
Security
Security
Science
Science
Design
Design
Environment
Environment
Finance
Finance
Crypto
Crypto
Politics
Politics
Sports
Sports
Education
Education
Gaming
Gaming
Art
Art
Music
Music
Health
Health
Books
Books
Food
Food
Travel
Travel
Personal
Personal
Bluesky
Twitter

FortiBleed Campaign Harvests 80,000 Fortinet Credentials Without Zero-Day Exploit

By

Mathew J. Schwartz

11d ago· 6 min readenNews

Summary

The FortiBleed campaign involved threat actors harvesting and selling working credentials for approximately 80,000 Fortinet firewalls and SSL-VPN gateways. Researchers found no evidence that a zero-day exploit was used in the campaign, suggesting the attackers likely leveraged previously known vulnerabilities, weak passwords, or exposed management interfaces. The incident highlights ongoing risks in network security appliance management and credential hygiene.

Source

bskyFortiBleed Campaign Harvests 80,000 Fortinet Credentials Without Zero-Day Exploitdatabreachtoday.com

Key quotes

· 3 pulled
The FortiBleed campaign harvested working credentials for 80,000 Fortinet firewalls and SSL-VPN gateways.
Researchers found no evidence tying the campaign to a zero-day exploit.
The incident underscores the importance of proper credential management and patching in network security appliances.
Snippet from the RSS feed
The FortiBleed campaign harvesting and selling working credentials for 80,000 Fortinet firewalls and SSL-VPN gateways doesn't appear to tie to a zero-day exploit,

You might also wanna read

Comments

Sign in to join the conversation.

No comments yet. Be the first.