Skip to main content
FreeIntelHub
Feed Threat Feed Search Trending
Intelligence CVE Priority Vulnerability IOC Lookup IOC Feed YARA Rules Phishing Lookup Exploit Lookup Pastes Dark Web
Adversaries Threat Groups Software Campaigns
Explore Dashboard Geo Map Heatmap MITRE ATT&CK
Browse Sources Vendors Categories Sectors
RSS API
FreeIntelHub
/
Sign In

Fortinet

20 articles

SC Media Campaigns Fortinet 1d ago

Hackers selling UK government login credentials on dark web amid FortiBleed campaign

The FortiBleed campaign targets internet-facing Fortinet VPNs and firewalls, with over 70,000 devices in 194 countries believed to be affected.

SC Media →

Qualys Blog Zero-Day Fortinet 2d ago

FortiBleed: Credential Reuse, Legacy Hashes, and the Risk of Internet-Exposed FortiGate Devices 

Key Takeaways FortiBleed refers to June 2026 public reporting of large-scale credential exposure and abuse targeting internet-reachable FortiGate management ...

Qualys Blog →

HackRead Zero-Day Fortinet Jul 2

FortiBleed Credential Theft Connected to INC and Lynx Ransomware

FortiBleed, the Fortinet credential theft campaign, is now connected to INC Ransom and Lynx, with a Nextcloud zero-day vulnerability also under investigation.

T1078

HackRead →

SecurityWeek Ransomware Fortinet Jul 2

FortiBleed Campaign Linked to INC, Lynx Ransomware Attacks

Researchers say credentials harvested from hundreds of thousands of FortiGate firewalls are being used to facilitate ransomware attacks by the INC and Lynx o...

SecurityWeek →

Security Affairs Ransomware Fortinet Jul 2

430,000 FortiGate Devices Exposed in FortiBleed Ransomware Link

FortiBleed exposed 430,000 FortiGate firewalls, linked to INC Ransom and Lynx, enabling domain compromise and at least 12 ransomware attacks. SOCRadar’s Thre...

Security Affairs →

The Hacker News Ransomware Fortinet Jul 2

FortiBleed Credential Theft Linked to INC and Lynx Ransomware Operations

The recently discovered financially-motivated FortiBleed campaign has been attributed to INC and Lynx ransomware operations, indicating that the verified, st...

T1078

The Hacker News →

GBHackers Ransomware Fortinet Jul 2

FortiBleed Campaign Linked to INC and Lynx Ransomware Operations

A direct operational link between the large-scale FortiBleed credential-harvesting campaign and two active ransomware-as-a-service (RaaS) groups: INC Ransom ...

T1588

GBHackers →

BleepingComputer Ransomware Fortinet Jul 1

FortiBleed credential-theft campaign linked to Lynx ransomware

The massive FortiBleed credential theft campaign has been linked to the INC and Lynx ransomware operations, suggesting the stolen Fortinet credentials were i...

T1078

BleepingComputer →

SC Media Campaigns Fortinet Jun 24

FortiBleed campaign steals 110M credentials from FortiGate targets

A tool called FortigateSniffer abuses a diagnostic utility to continuously monitor network traffic.

SC Media →

Security Affairs Data Breach Fortinet Jun 24

FortiBleed: The Broker Who Turned 73,000 Firewalls Into a Product Catalog

FortiBleed exposed valid credentials for 73,000+ Fortinet firewalls, revealing a large-scale access-brokering operation targeting organizations worldwide. In...

Security Affairs →

The Hacker News Campaigns Fortinet Jun 23

FortiBleed Targeted FortiGate Firewalls in 110 Million-Credential Harvesting Operation

A Russian-speaking initial access broker (IAB) driven by financial gain is assessed to be behind a large-scale credential-harvesting operation known as Forti...

The Hacker News →

Help Net Security Campaigns Fortinet Jun 23

What the Fortibleed campaign means for organizations running FortiGate firewalls

A massive credential-harvesting campaign targeting FortiGate firewalls has exposed thousands of organizations to potential network compromise, and a trove of...

Help Net Security →

GBHackers Campaigns Fortinet Jun 23

FortiBleed Campaign Uses FortigateSniffer to Harvest 110 Million Credentials From Fortinet Firewalls

A large-scale credential harvesting campaign called “FortiBleed” has been uncovered, revealing how threat actors are exploiting Fortinet FortiGate firewalls ...

GBHackers →

BleepingComputer Campaigns Fortinet Jun 22

FortiBleed campaign used custom FortiGate sniffer to steal credentials

Security firm SOCRadar says the large-scale FortiBleed campaign targeting Fortinet FortiGate devices used custom sniffers to harvest authentication secrets f...

BleepingComputer →

Security Affairs Campaigns Fortinet Intel Jun 22

FortiBleed: The Most Detailed Breakdown Yet of an Active Russian Credential-Harvesting Operation

FortiBleed targeted 430,000+ FortiGate devices, harvesting 110M credentials and enabling breaches through large-scale credential theft.

T1078

Security Affairs →

SecurityWeek Campaigns Fortinet Jun 22

Fortinet Responds to FortiBleed Campaign

A database of over 86,000 confirmed working credentials was created during the credential-harvesting campaign. The post Fortinet Responds to FortiBleed Campa...

SecurityWeek →

Infosecurity Magazine Campaigns Fortinet Jun 22

NCSC Urges Fortinet Customers to Tackle FortiBleed Fallout

The NCSC has released guidance for Fortinet customers impacted by the FortiBleed threat campaign

Infosecurity Magazine →

GBHackers Advisory Fortinet Jun 22

Fortinet Warns of Active FortiBleed Credential Theft Attacks on FortiGate Devices

Fortinet has issued a security warning about ongoing credential-harvesting attacks targeting FortiGate devices in a campaign known as “FortiBleed.” Threat ac...

T1078

GBHackers →

Help Net Security Vulnerability Disclosure Fortinet Splunk Jun 21

Week in review: 74k Fortinet firewall credentials stolen, Splunk Enterprise RCE under active attack

Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: A hardware neural network backdoor that hides in plain sigh...

Help Net Security →

Security Affairs Campaigns Fortinet Jun 20

FortiBleed Exposes Global Credential-Spraying Operation

FortiBleed exposed a massive campaign that made billions of login attempts against Fortinet VPNs, compromising organizations worldwide. FortiBleed wasn’t a t...

T1598 1 IOC

Security Affairs →

1 2 3 Next page»
FreeIntelHub · Open-source CTI platform

All articles belong to their respective owners. FreeIntelHub aggregates publicly available RSS feeds for informational purposes only. DMCA