Storia in 3 fonti

Fortinet Responds to FortiBleed Campaign

Fortinet says the FortiBleed credential-harvesting campaign relies on logins from previous incidents, not on new vulnerabilities.

Raccontata dasecurityweek.comthehackernews.combleepingcomputer.com

Confronto fonti

3 prospettive sulla stessa storia

AI · summaries

bleepingcomputer.com2 g fa

FortiBleed campaign used custom FortiGate sniffer to steal credentials

Security firm SOCRadar says the large-scale FortiBleed campaign targeting Fortinet FortiGate devices used custom sniffers to harvest authentication secrets from compromised firewalls and steal credentials.

Leggi questa versione → originale

securityweek.com5 g fa

FortiBleed: 86,000 Fortinet Device Credentials Compromised

FortiBleed exposed 86,000 Fortinet firewall and VPN credentials across 194 countries, impacting 50% of internet-facing devices. Organizations must reset credentials, enforce PBKDF2 and MFA, and lockdown management access to mitigate breach risk.

Leggi questa versione → originale

thehackernews.com5 g fa

CISA Warns Fortinet Customers as FortiBleed Hits 86,644 FortiGate Devices

Russian attackers compromised 86,644 Fortinet devices via FortiBleed exploiting unrerotated default credentials (63% of breaches). Perimeter firewalls remain critical enterprise entry point; credential reuse cascade demands MFA, password rotation, and PBKDF2 upgrade.

Leggi questa versione → originale

Timeline cronologica

1. venerdì 19 giugno 2026·securityweek.com
   

   FortiBleed: 86,000 Fortinet Device Credentials Compromised

   The large-scale credential theft campaign hit roughly half of the internet-accessible Fortinet firewalls and VPNs.

2. venerdì 19 giugno 2026·thehackernews.com
   

   CISA Warns Fortinet Customers as FortiBleed Hits 86,644 FortiGate Devices

   FortiBleed attackers compromised 86,644 FortiGate devices using credential attacks, prompting CISA to urge password resets and MFA.

3. lunedì 22 giugno 2026·securityweek.com
   

   Fortinet Responds to FortiBleed Campaign

   Fortinet says the FortiBleed credential-harvesting campaign relies on logins from previous incidents, not on new vulnerabilities.

4. lunedì 22 giugno 2026·bleepingcomputer.com
   

   FortiBleed campaign used custom FortiGate sniffer to steal credentials

   Security firm SOCRadar says the large-scale FortiBleed campaign targeting Fortinet FortiGate devices used custom sniffers to harvest authentication secrets from compromised…

5. martedì 23 giugno 2026·securityweek.com
   

   Russian Initial Access Broker Behind FortiBleed Campaign

   A Russian initial access broker has captured over 110 million credentials as part of the ongoing FortiBleed campaign.

6. martedì 23 giugno 2026·thehackernews.com
   

   FortiBleed Targeted FortiGate Firewalls in 110 Million-Credential Harvesting Operation

   FortiBleed targeted 430,000 FortiGate firewalls with sniffers and brute-force pipelines that identified over 110 million credentials.