Skip to main content
Login
institutional access

You are connecting from
Lake Geneva Public Library,
please login or register to take advantage of your institution's Ground News Plan.

Published loading...Updated

Massive Breach Spills Credentials for Thousands of Sensitive Networks

Researchers say the leak contains valid passwords and login details for major companies, with attackers relying on reused credentials instead of a new flaw.

  • A newly discovered data leak dubbed "FortiBleed" has exposed credentials for 73,932 Fortinet firewall URLs across 194 countries, impacting 21,632 unique domains worldwide.
  • Unlike previous campaigns exploiting system vulnerabilities, this operation relies on brute-force tactics; a Russian-speaking threat group used a 45-GPU cluster to crack VPN authentication hashes and move laterally into Active Directory environments.
  • Major corporations including Samsung, Comcast, and Foxconn appear in the verified database, which spans nearly every major industry sector with the highest concentration of affected devices in India and the United States.
  • Cybercriminals successfully exfiltrated classified defense documents from a Turkish NATO defense contractor using the recovered credentials; Fortinet denied the attacks are fresh, claiming the data involves reshared information from previous incidents.
  • Because most compromised devices remain online, security experts urge organizations to immediately rotate all Fortinet VPN passwords and enforce multi-factor authentication to mitigate the substantial, ongoing risk to enterprise infrastructure.
Insights by Ground AI

23 Articles

GloboGlobo
Lean Right

Campaign FortiBleed Exposes 73,000 Firewall Credentials in Various Countries and Rekindles Debate on Safety Hygiene in Corporate Networks

A large-scale cybercriminal campaign by FortiBleed exposed administrative and VPN credentials of at least 80,000 Fortinet firewalls distributed across various countries, reaching 21,632 corporate domains. The data were discovered by researcher Volodymyr Diachenko and analyzed by the intelligence firm Hudson Rock, which identified companies such as Samsung, Oracle, Foxconn, Siemens and Sony among the affected organizations. According to researche…

·Brazil
Read Full Article
TNWTNW
Lean Left

'FortiBleed': 75,000 Fortinet firewalls' logins exposed

Security researchers have uncovered a sprawling cache of stolen credentials for Fortinet firewalls, exposing login details for tens of thousands of organisations around the world. The dataset, dubbed “FortiBleed,” contains plaintext usernames, emails and passwords for 73,932 unique Fortinet FortiGate firewall and VPN devices across 194 countries, touching more than 21,000 domains. Researchers estimate that […] This story continues at The Next Web

·Amsterdam, Netherlands (Kingdom of the)
Read Full Article
Ars TechnicaArs Technica
Center

Massive breach spills credentials for thousands of sensitive networks

Researchers have uncovered a massive breach of Fortinet firewalls that has given Russian-speaking attackers near-unrestricted access to some of the world’s largest and most powerful organizations, including Oracle, Chevron, Lenovo, Federal Express, a NATO defense contractor, and Fortinet itself. Nearly 74,000 Fortinet devices from more than 21,000 IP addresses in 194 countries have been compromised and their plaintext credentials exposed online,…

·New York, United States
Read Full Article
TechCrunchTechCrunch
Reposted by
BizTocBizToc
Center

Cybercriminals allegedly hacked tens of thousands of Fortinet firewalls used by major companies all over the world

An alleged Russian-speaking group of cybercriminals are reportedly compromising and targeting several major companies that use Fortinet Firewalls and VPNs through previously known passwords.

·United States
Read Full Article
The RegisterThe Register
Center

Massive password-stealing attack hits 75k Fortinet firewalls

UPDATED If you have a Fortinet firewall, it's time to stop and change your passwords. Intruders somehow gained access to around 75,000 Fortinet firewall devices and stole credentials belonging to major corporations across 194 countries, in some cases leading to full network compromise. Security researchers say that they have verified the data, and the cracked FortiGate passwords belong to accounts spanning multinational corporations including Fo…

Read Full Article
BleepingComputerBleepingComputer
Reposted by
cybernoz.comcybernoz.com
Center

FortiBleed leak exposes Fortinet VPN credentials for 73,000 devices.

A newly discovered data leak dubbed "FortiBleed" has exposed what appears to be a collection of Fortinet and FortiGate VPN credentials for 73,932 firewall URLs at organizations worldwide.

·New York, United States
Read Full Article
Think freely.Subscribe and get full access to Ground NewsSubscriptions start at $9.99/yearSubscribe
Father's Day SaleGet 40% off Vantage subscriptions for yourself or a friend.Get Started

Bias Distribution

  • 67% of the sources are Center
67% Center

Factuality Info Icon

To view factuality data please Upgrade to Premium

Ownership

Info Icon

To view ownership data please Upgrade to Vantage

BleepingComputer broke the news in New York, United States on Wednesday, June 17, 2026.
Too Big Arrow Icon
Sources are mostly out of (0)

Similar News Topics

Cybercrimes icon

Cybercrimes

Chevron icon

Chevron

Oracle icon

Oracle

Cyber Security icon

Cyber Security

Technology icon

Technology

Espionage icon

Espionage

Cyberattacks icon

Cyberattacks

News
Feed Dots Icon
For You
Search Icon
SearchBlindspot LogoBlindspotLocal